Closed zxz41 closed 8 years ago
Found originaly by sigsegv
"DebugOverlay::Paint calls Q_vsnprintf with an unsanitized format string parameter, instead of using "%s" as a sane person would do." -sigsegv
Original image of the exploit
This was patched for LiveTF2, but Valve never updated any other Source based games with this patch.
Yay, format string exploits aren't extinct! Will fix ASAP, thanks for the report.
Fixed in the next release.
Found originaly by sigsegv
Original image of the exploit
This was patched for LiveTF2, but Valve never updated any other Source based games with this patch.