Quote:
|
Originally Posted by Darko_UK
screens or it couldnt happen
|
Critical EXPLOIT discovered... Anet read plz
Bryant Again
Sword Liger
yeh why not ill come tag along
Lord Sojar
Quote:
|
Originally Posted by Two April Mornings
Bad thing is that OP used the exploit, ANET hates exploiters, even if they come forward to reveal one they found out.
|
Quote:
|
Originally Posted by X Earth X
I've posted a message on Gaile's talk page saying they should look into this ASAP. Let's hope they do.
|
mr_groovy
My question is if this uses a external program, did the op stumble upon it? Or was he in the development of it? And if so why would a person try and make an exe that looks at the packets send to the gw server?
And if he stumbled upon it, it must be roaming the internet, meaning that Anet better hurry up and fix it.
And if he stumbled upon it, it must be roaming the internet, meaning that Anet better hurry up and fix it.
Whirlwind
lol every single person who has posted on the 2nd page is online trolling this right now, probably refreshing the page over and over.
EDIT: Nix that, 2nd and 3rd page as well !
EDIT: Nix that, 2nd and 3rd page as well !
Tyla
Quote:
|
Originally Posted by Bryant Again
Yeup. If Rahja is using it too, they're both going to get banned. They should probably be able to get unbanned, though, if they send in a bumload of tickets.
However, I can't say. I've only been banned on ANet "thinking" I was doing something. They actually used the exploit. Nonetheless, we admire the bravery of the two. /salute |
but either way,rahja and pablo didnt use the exploit to their gain(i mean,if what rahja said was true...)
so imo,let them not be banned!
bamm bamm bamm
Quote:
|
Originally Posted by Rahja the Thief
ALright, let me clarify this for people... this exploit allows not just crashing. Pablo could make himself a GM, he could steal EVERY SINGLE GW ACCOUNT ON THE SERVER. The client is poorly coded as I am finding out, and this security hole only gets deeper and deeper the more I am finding. So, I would be afraid. Lucky credit card info is SSL... otherwise, that too would be easy pickings. So, hope that clears up any confusions as to how SERIOUS this is.
|
Lord Sojar
Quote:
|
Originally Posted by Bryant Again
Yeup. If Rahja is using it too, they're both going to get banned. They should probably be able to get unbanned, though, if they send in a bumload of tickets.
However, I can't say. I've only been banned on ANet "thinking" I was doing something. They actually used the exploit. Nonetheless, we admire the bravery of the two. /salute |
Earth
Quote:
|
Originally Posted by Rahja the Thief
really wish u hadn't have done that. I am contacting her directly, and making this anymore public is bad.
|
Bryant Again
Quote:
|
Originally Posted by Rahja the Thief
Using it to gain an advantage is one thing, testing it to see if it is repeatable is a whole other thing. Pablo isn't the bad guy here, he is a the good guy.
|
I think it's because there's like no connection between the ANet staff reading the tickets and the people who're doing the banning. But ya'll know what I mean, aye?
Lord Sojar
Quote:
|
Originally Posted by mr_groovy
My question is if this uses a external program, did the op stumble upon it? Or was he in the development of it? And if so why would a person try and make an exe that looks at the packets send to the gw server?
And if he stumbled upon it, it must be roaming the internet, meaning that Anet better hurry up and fix it. |
[quote = bamm bamm bamm]What I don't understand is, why is this a client issue and not a server issue? It sounds like you're spoofing something and sending it to the server and it's disconnecting everyone, in which case the server isn't validating it's inputs too well. Surely if it was client-side you would need to know the IP addresses of everyone in a match, and as far as I'm aware, the server is the only one with that info. The client just does what it's told, so you must be getting the server to tell them to disconnect somehow.[/quote]
Ok, you need to stop now... this is what I am talking about. Stop injecting ideas, your only going to encourage more people to look into the issue. Nothing personal, but pls dont post anymore ideas.
Quote:
|
Originally Posted by Bryant Again
Nonetheless, you're both going to get banned. When the duping thing was brought to ANet's attention, a lot of people who tested it and brought it to their attention, including names such as Fenix and Max Gladius, got their accounts banned.
I think it's because there's like no connection between the ANet staff reading the tickets and the people who're doing the banning. But ya'll know what I mean, aye? |
Bryant Again
Quote:
|
Originally Posted by Rahja the Thief
Ok, you need to stop now... this is what I am talking about. Stop injecting ideas, your only going to encourage more people to look into the issue. Nothing personal, but pls dont post anymore ideas.
|
Lord Sojar
Quote:
|
Originally Posted by Bryant Again
This is a forum.
|
bamm bamm bamm
Quote:
|
Originally Posted by Rahja the Thief
Ok, you need to stop now... this is what I am talking about. Stop injecting ideas, your only going to encourage more people to look into the issue. Nothing personal, but pls dont post anymore ideas.
|
Bryant Again
Quote:
|
Originally Posted by Rahja the Thief
Ugh....this is why I have requested like 9x for this thread to be locked. Further discussion is going to give people more ideas, and someone is going to figure it out, and KABOOM, they are going to go to town and exploit this in every fashion. ... and trust me when I say, those fashions are far worse then just crashing your own team.
|
Now this kind of discussion is what'll get it closed. Back to the topic.
Whirlwind
Rahjah you are adding more ideas on your own with each passing post..
Darkobra
Rahjah, calm down. Each time you snap at a post, you're giving more hints and doing more damage. You even advertised it as FAR more than just a client crasher. You alone have done far more damage and given far more hints than I have EVER seen in this thread with assumptions. Edit the posts in reference to exclude such critical information if you're REALLY after safety over glory.
zwei2stein
Quote:
|
Originally Posted by Rahja the Thief
He is not going to be banned... he figured out the exploit in a harmless manner. He reported it, and he is standing with me right now. He is not going to be banned, it is not like he is going crazy with this. So stop saying that, and stop flaming him and accusing him of this and that.
|
Interesting eh.
Bryant Again
Quote:
|
Originally Posted by Rahja the Thief
Again, I am going through Gaile, gaile isn't going to ban us, and she isn't going to go mentioning our names to the retards at PlayNC. We are not going to be banned. That is silly.
|
And don't you want her to mention your names at PlayNC so you don't get banned? Otherwise, they'll just use their logs and see "okay these people used it banned".
Of course, this wasn't as widespread as the other exploits, so you may be fine. I'd expect the worst, though.
Reverend Dr
I'm going to be guessing that this will shut down the GWLP project.
Rampager
very probably
pablo24
The people who tested the dupe exploit got unbanned right after. ArenaNet was just running a script to ban anyone with anormal reconnect/trade activity or maybe just banned people who had more than one item with the same GUID. (I think they do have GUIDs for every item to prevent duping)
Why should it? We are just helping ArenaNet to fix bugs before they get exploited by malicious people.
Quote:
|
Originally Posted by Reverend Dr
I'm going to be guessing that this will shut down the GWLP project.
|
toon-a-loon
What all could you do with this exploit?? I'm interested in that. I don't care about what the program was but I just wanna know all the things you could do with it.
toon-a-loon
Quote:
|
Originally Posted by pablo24
Why should it? We are just helping ArenaNet to fix bugs before they get exploited by malicious people.
|
Lord Sojar
Quote:
|
Originally Posted by Bryant Again
If you're not banned, then good. But I wouldn't be suprised if you were.
And don't you want her to mention your names at PlayNC so you don't get banned? Otherwise, they'll just use their logs and see "okay these people used it banned". Of course, this wasn't as widespread as the other exploits, so you may be fine. I'd expect the worst, though. |
Quote:
|
Originally Posted by toon-a-loon
Then you better close the download for GWLP for now. I have a few ideas in my head on how to do what your doing. It probably deals with opening GWLP then opening guild wars at the sametime.
|
pablo24
Quote:
|
Originally Posted by toon-a-loon
Then you better close the download for GWLP for now. I have a few ideas in my head on how to do what your doing. It probably deals with opening GWLP then opening guild wars at the sametime.
|
Leslie
This seems serious enough that the servers should really be taken down until it's fixed in my opinion
Bryant Again
Quote:
|
Originally Posted by Rahja the Thief
it isnt detectable... so best of luck to them.
|
If so, then the botters are going to be pretty damned happy with this info.
But best of luck to you, since ANet has a really good method of banning. If you two *do* get banned, it'll just be temporate. Don't freak out, banned four times here. As long as you're totally innocent, you'll be fine.
Lord Sojar
Quote:
|
Originally Posted by Bryant Again
How is it not detectable? Are certain programs able to be coded so they can't be detected? That's what you're saying???
If so, then the botters are going to be pretty damned happy with this info. But best of luck to you, since ANet has a really good method of banning. If you two *do* get banned, it'll just be temporate. Don't freak out, banned four times here. As long as you're totally innocent, you'll be fine. |
toon-a-loon
Quote:
|
Originally Posted by Rahja the Thief
Frankly... this is silly. THis is like saying TexMod can do dmg. No, GWLP has nothing to do with this, please don't get that great project shutdown.
|
Lord Sojar
Quote:
|
Originally Posted by toon-a-loon
Who is to say that the programs GWLP are using to make it didn't get used to make a little .exe to exploit gw?? Obviously you guys had a idea to see if the .exe you made could do something to gw and it acually was able to do something, but you guys aren't abusing. So thats a good thing. All your intentions was good from the start. Anet always needs a little help on the side, to keep their players safe.
|
toon-a-loon
Quote:
|
Originally Posted by Rahja the Thief
When you dig through code, you are bound to find errors or missing sections. That is all that has happened. The .exe was created (as far as I am aware) to test to see if this "issue" really was true, and if they code was weak (which it obviously has proven to be)
|
magi of the light
can someone explain to me what GWLP is please?
Rainman
meeee!! add me as soone mah jing to friends list but ill be on a pvp char when we test
IF WE ARE STILLTESTING AND SPACES ARE AVAILABLE!
IF WE ARE STILLTESTING AND SPACES ARE AVAILABLE!
toon-a-loon
GWLP = Guild war lan project.
Its like a mod.
Its like a mod.
Loviatar
if they actually have found something
if they actually wanted to help
THEY WOULD HAVE PM GAILE AND SUPPORT NOT SPLASHED IT ALL OVER
THIS STINKS
if they actually wanted to help
THEY WOULD HAVE PM GAILE AND SUPPORT NOT SPLASHED IT ALL OVER
THIS STINKS
magi of the light
Quote:
|
Originally Posted by toon-a-loon
GWLP = Guild war lan project.
Its like a mod. |
pablo24
Loviatar, calm down. I don't think posting this here will tell people how to reproduce the exploit, it deals with much more complicate things than just opening 2 Guild Wars at once.
As for GWLP, it isn't a "mod". Read this thread for more info http://www.guildwarsguru.com/forum/s...php?t=10205152
As for GWLP, it isn't a "mod". Read this thread for more info http://www.guildwarsguru.com/forum/s...php?t=10205152
Kashrlyyk
Quote:
|
Originally Posted by Loviatar
if they actually have found something
if they actually wanted to help THEY WOULD HAVE PM GAILE AND SUPPORT NOT SPLASHED IT ALL OVER THIS STINKS |
Lord Sojar
Quote:
|
Originally Posted by Loviatar
if they actually have found something
if they actually wanted to help THEY WOULD HAVE PM GAILE AND SUPPORT NOT SPLASHED IT ALL OVER THIS STINKS |
If you had read, you would have noticed that is exactly what we are doing, and we are trying to keep this semi hush hush. The .exe is locked away and not about to be released.
YOUR RIGHT, THIS DOES STINK.