[hlds] TF2 Client Crash Exploit
Has anyone been encountering players that seem to be able to cause someone's Team Fortress 2 client to close to the desktop? We've recently had a player performing these actions, but are unsure how they are doing it or how to protect against it. The player in question was known as lunar with ID STEAM_0:1:63519733, for reference purposes. I have provided a copy of the dmp files generated from the incident via the link below. I feel this is rather severe as we've had our servers emptied from this exploit, so if we can get a solution then it would be to everyone's benefit. - Crashdoom ZIP Archive of dumps: https://dl.dropboxusercontent.com/u/50570879/dumps.zip (https://dl.dropboxusercontent.com/u/50570879/dumps.zip) Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ozzy Furocity. Finally, the recipient should check this email and any attachments for the presence of viruses. Ozzy Furocity accepts no liability for any damage caused by any virus transmitted by this email.___ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds
Re: [hlds] TF2 Client Crash Exploit
It appears to still be possible in version 2813840. On Sun, Jun 7, 2015 at 01:19 AM, E. Olsen wrote: Hmm...I had thought Valve had fixed this a couple of patches ago (Eric Smith was aware of it). On Sat, Jun 6, 2015 at 7:51 PM, Adam Walker wrote: As a follow-up, the issue appears to be caused by an invalid .vtf spray. I will not post the associated file on the mailing list, but will provide it upon request. When the .vtf is loaded by the client it seems to cause a memory access violation, which results in the game crashing. This also applies to players that attempt to view the spray, accidentally or otherwise. - Crashdoom On Sun, Jun 7, 2015 at 12:27 AM, Adam Walker wrote: Has anyone been encountering players that seem to be able to cause someone's Team Fortress 2 client to close to the desktop? We've recently had a player performing these actions, but are unsure how they are doing it or how to protect against it. The player in question was known as lunar with ID STEAM_0:1:63519733, for reference purposes. I have provided a copy of the dmp files generated from the incident via the link below. I feel this is rather severe as we've had our servers emptied from this exploit, so if we can get a solution then it would be to everyone's benefit. - Crashdoom ZIP Archive of dumps: https://dl.dropboxusercontent.com/u/50570879/dumps.zip (https://dl.dropboxusercontent.com/u/50570879/dumps.zip) Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ozzy Furocity. Finally, the recipient should check this email and any attachments for the presence of viruses. Ozzy Furocity accepts no liability for any damage caused by any virus transmitted by this email. Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ozzy Furocity. Finally, the recipient should check this email and any attachments for the presence of viruses. Ozzy Furocity accepts no liability for any damage caused by any virus transmitted by this email. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds (https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds) Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ozzy Furocity. Finally, the recipient should check this email and any attachments for the presence of viruses. Ozzy Furocity accepts no liability for any damage caused by any virus transmitted by this email.___ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds
Re: [hlds] TF2 Client Crash Exploit
As a follow-up, the issue appears to be caused by an invalid .vtf spray. I will not post the associated file on the mailing list, but will provide it upon request. When the .vtf is loaded by the client it seems to cause a memory access violation, which results in the game crashing. This also applies to players that attempt to view the spray, accidentally or otherwise. - Crashdoom On Sun, Jun 7, 2015 at 12:27 AM, Adam Walker wrote: Has anyone been encountering players that seem to be able to cause someone's Team Fortress 2 client to close to the desktop? We've recently had a player performing these actions, but are unsure how they are doing it or how to protect against it. The player in question was known as lunar with ID STEAM_0:1:63519733, for reference purposes. I have provided a copy of the dmp files generated from the incident via the link below. I feel this is rather severe as we've had our servers emptied from this exploit, so if we can get a solution then it would be to everyone's benefit. - Crashdoom ZIP Archive of dumps: https://dl.dropboxusercontent.com/u/50570879/dumps.zip (https://dl.dropboxusercontent.com/u/50570879/dumps.zip) Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ozzy Furocity. Finally, the recipient should check this email and any attachments for the presence of viruses. Ozzy Furocity accepts no liability for any damage caused by any virus transmitted by this email. Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ozzy Furocity. Finally, the recipient should check this email and any attachments for the presence of viruses. Ozzy Furocity accepts no liability for any damage caused by any virus transmitted by this email.___ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds
Re: [hlds] TF2 Client Crash Exploit
Hmm...I had thought Valve had fixed this a couple of patches ago (Eric Smith was aware of it). On Sat, Jun 6, 2015 at 7:51 PM, Adam Walker crashd...@ozzyfurocity.net wrote: As a follow-up, the issue appears to be caused by an invalid .vtf spray. I will not post the associated file on the mailing list, but will provide it upon request. When the .vtf is loaded by the client it seems to cause a memory access violation, which results in the game crashing. This also applies to players that attempt to view the spray, accidentally or otherwise. - Crashdoom On Sun, Jun 7, 2015 at 12:27 AM, Adam Walker crashd...@ozzyfurocity.net wrote: Has anyone been encountering players that seem to be able to cause someone's Team Fortress 2 client to close to the desktop? We've recently had a player performing these actions, but are unsure how they are doing it or how to protect against it. The player in question was known as lunar with ID STEAM_0:1:63519733, for reference purposes. I have provided a copy of the dmp files generated from the incident via the link below. I feel this is rather severe as we've had our servers emptied from this exploit, so if we can get a solution then it would be to everyone's benefit. - Crashdoom ZIP Archive of dumps: https://dl.dropboxusercontent.com/u/50570879/dumps.zip Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ozzy Furocity. Finally, the recipient should check this email and any attachments for the presence of viruses. Ozzy Furocity accepts no liability for any damage caused by any virus transmitted by this email. Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ozzy Furocity. Finally, the recipient should check this email and any attachments for the presence of viruses. Ozzy Furocity accepts no liability for any damage caused by any virus transmitted by this email. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds
Re: [hlds] TF2 Client Crash Exploit
Yeah, I'd send that one in directly to Valve. Put the offending file on some service like Google Drive, Dropbox, OneDrive, etc. On 6/6/2015 6:51 PM, Adam Walker wrote: As a follow-up, the issue appears to be caused by an invalid .vtf spray. I will not post the associated file on the mailing list, but will provide it upon request. When the .vtf is loaded by the client it seems to cause a memory access violation, which results in the game crashing. This also applies to players that attempt to view the spray, accidentally or otherwise. - Crashdoom On Sun, Jun 7, 2015 at 12:27 AM, Adam Walker crashd...@ozzyfurocity.net wrote: Has anyone been encountering players that seem to be able to cause someone's Team Fortress 2 client to close to the desktop? We've recently had a player performing these actions, but are unsure how they are doing it or how to protect against it. The player in question was known as lunar with ID STEAM_0:1:63519733, for reference purposes. I have provided a copy of the dmp files generated from the incident via the link below. I feel this is rather severe as we've had our servers emptied from this exploit, so if we can get a solution then it would be to everyone's benefit. - Crashdoom ZIP Archive of dumps: https://dl.dropboxusercontent.com/u/50570879/dumps.zip Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ozzy Furocity. Finally, the recipient should check this email and any attachments for the presence of viruses. Ozzy Furocity accepts no liability for any damage caused by any virus transmitted by this email. Disclaimer: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Ozzy Furocity. Finally, the recipient should check this email and any attachments for the presence of viruses. Ozzy Furocity accepts no liability for any damage caused by any virus transmitted by this email. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds