www.Create-Server.com » Tutorials » Counter-Strike 1.6 "Exploit Watch"

Tutorials: Counter-Strike 1.6 "Exploit Watch"

Author: 3JIou-TaTaPuH (16 September 2010)

So, I has decided to collect accessible comprehensive information about last "infections" floating around the Internet and Counter-Strike world.
Let's begin number 1 in our top destructive exploits list is:

• autobuy.txt exploit
Vulnerable: 47/48 protocol servers. (NONSTEAM/STEAM).
Consequences: By joining into game with the changed file, player can cause DoS attack and crush the server. It can't be detected in logs.
Solution: Install Fix AutoBuy bug plugin.

• hlds_fuck (see for more info)
Vulnerable: 47/48 protocol servers. (NONSTEAM/STEAM) It affects to all servers with authorization STEAM3 (GoldSource, Source 2007, Source 2007 U1).
Consequences: Server crushes with following error "The Instruction at 0x####### referenced memory at 0x#######. The memory could not be 'read". Can't be detected in logs coz server crushes immediately and doesn't have a time to log crush information.
Solution: Install dproto v0.4.1 or higher.

• hlds_vcrash (see for more info)
Vulnerable: 47/48 protocol servers. (NONSTEAM/STEAM).
Consequences: Server crushes with following error "FATAL ERROR (shutting down): Host_Error: SV_ParseVoiceData: invalid incoming packet".
Solution: Patched server binaries.

• failds.exe

It is a modification of exploits described above. It also has some various modifications made by another Russian coders, which adds a convenient interface and some features which make it more destructive.
Vulnerable: 47/48 protocol servers. (NONSTEAM/STEAM).
Consequences: Player with some stupid name connects to server and then server crushes.
Solution: Install dproto v0.8.68 or higher.

• fake players
This program was created by young Russian coder (if believe to my friend, he is 14 years old).
Vulnerable: 47/48 protocol servers. (NONSTEAM/STEAM).
Consequences: It fills the server with fake players, they all have the same names. Seems like not big deal isn't it? But the problem is that there are no way to kick or ban them. This is a perfect spambot.
Solution: Install dproto v0.8.68 or higher.

• rcon brute exploit
Vulnerable: 47/48 protocol servers. (NONSTEAM/STEAM).
Consequences: Rcon password from your server can be captured by the malefactor and he will start to sow chaos there, beginning from adding himself (or anyone else) to admin list and finishing with changing the server name, or setting password on it, or shutting server down.
Solution: To set difficult long rcon password, which consist of letters, numerals and symbols.

(Votes #: 3)

Custom Search

Views: 9567 Comments (4) Print

Cant Find Any Online Server In Counter-Strike?

CS 1.6 full Non-Steam+Zbots+AMXX

Fix AutoBuy Bug v1.1

How to make itself an administrator?

Users

Joined: 24.01.2011, ICQ: --

#1: Pilat (24 January 2011 23:17)

Congratulations to help many people.

Users

Joined: 10.02.2011, ICQ: --

#2: mohammadhitman (11 February 2011 02:13)

hi. i have a big problem.i think it,s a bad hlds bug.

i have shoker 3.5

dproto 9.87

metamod 1.19

amxmod 1.8.1

some player come to my server and attack Expolit & my HLDS in PRoccesors task manager ,cpu usage go up to 80 % - 100 %.

what am i doing for this problem?

Users

Joined: 14.07.2011, ICQ: --

#3: ankushrana (16 July 2011 03:38)

Admin i need help ....plzz do reply ..

Users

Joined: 3.08.2011, ICQ: --

#4: maxmkgaming (4 August 2011 07:40)

wow nice

Information

Members of Guests cannot leave comments.