Pinsplash
commented
4 years ago apparently this was just fixed, but only for tf2..?
Open RoonMoonlight opened 4 years ago
Pinsplash
commented
4 years ago apparently this was just fixed, but only for tf2..?
RoonMoonlight
commented
4 years ago Yeah the other games is not fixed. Hopefully valve should patch the exploit on all games. EDIT: Negative, they should patch all Source Engine branch to avoid malformed spray crash exploit.
CanadianJeff
commented
4 years ago sourcemod offers a plugin that will scan detect and remove all invalid sprays from a server look on alliedmodders forums
destoer
commented
3 years ago This is still broken on css
CanadianJeff
commented
3 years ago valve should just open source all source engine 1
CanadianJeff
commented
2 years ago this bug also posted here too
destoer
commented
2 years ago a fix was attempted but setting the "unknown bit" inside the header flags is enough to get around it
CanadianJeff
commented
2 years ago because the Tsuey issues pages removed all video links demoing the crash I thought I would put them back here
https://www.youtube.com/watch?v=rhzaKbmDg0Q https://streamable.com/pi8jus
these 2 videos are demos of L4D2 however several other games are also vuln using the same method
CanadianJeff
commented
2 years ago razzy — Today at 12:30 AM a 128x128 render target with that is a depth buffer that doesnt have a depth buffer doesnt seem to make any sense, but it's the source code engine so :anything goes:™️
alexiscoutinho
commented
2 years ago because the Tsuey issues pages removed all video links demoing the crash I thought I would put them back here
https://www.youtube.com/watch?v=rhzaKbmDg0Q https://streamable.com/pi8jus
these 2 videos are demos of L4D2 however several other games are also vuln using the same method
They can still be found in the comments' history though.
CanadianJeff
commented
2 years ago still cringe that Tsuey would remove the video links from his github I mean it is within his right todo so but if no one knows how this crash is done it will most likely never get fixed
CanadianJeff
commented
2 years ago can anyone confirm if garrys mod is vuln to this crashing spray?
CanadianJeff
commented
2 years ago pretty sure just like the official forums steam/valve does not care anymore
its been well over 1 year and still not patched
https://www.youtube.com/watch?v=yzbkUYvKOmg https://streamable.com/h5uzwg
CanadianJeff
commented
2 years ago I guess this is now patched in L4D2 still not confirmed if this is patched if any of the other source 1 based games I have personally notified to the Goldeneye Source devs about the sourcemod plugin and they have applied the fix
ghost
commented
2 years ago The issue is not fixed yet, today a new exploit is released and doing the same thing, crash players games...tested this exploit in left 4 dead 2. spray.zip
AshThe9thSurvivor
commented
2 years ago I just saw a publication referring to L4D1, where it mentions this exploit, and as they always marked it as repeated, what's the point of doing this if they're not going to fix it, besides they always forget about L4D1, I've been reporting errors here several times and never I have been heard, the errors are still there, even requests that are not even reviewed, it seems to me.
CanadianJeff
commented
2 years ago has this crap ever been reported to hacker one???????
CanadianJeff
commented
2 years ago looks like Tsuey on the L4D2 thread has considered this issue closed but that does not mean it is not still an issue with other source based games so I will leave this issue open
Hello,
I found a bug regarding the spray exploit on All Source 1 Games. This time it is different with Crash Bot Issue. The others could crash the server by abusing Spray features using invalid spray.