This should be near the top of the priority list. I mean, this is really bad. Anyone can randomly trash or exploit through arbitrary uploads any file the srcds has access to, including files outside of the source server directories if there's any access. This is aside from the numerous current crash exploits which script kiddies are running around using in droves.
Could you... you know... please hurry up? Brian Rak wrote: > Yay for another exploit: > http://aluigi.altervista.org/adv/sourceupfile-adv.txt > > _______________________________________________ > To unsubscribe, edit your list preferences, or view the list archives, please > visit: > http://list.valvesoftware.com/mailman/listinfo/hlds_linux > > _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
