Need help with exploits in CT2.4 (fixes inside)
Forum rules
READ NOW: L2j Forums Rules of Conduct
READ NOW: L2j Forums Rules of Conduct
-
- Advanced User
- Posts: 1440
- Joined: Wed Apr 15, 2009 10:07 am
Need help with exploits in CT2.4 (fixes inside)
Does anyone know what critical exploits have show up from Epilogue till now? Or at least help me in any way to find them?
Last edited by JMD on Thu Mar 26, 2015 5:14 pm, edited 1 time in total.
- Gries
- Posts: 307
- Joined: Fri Jun 17, 2011 9:45 am
Re: Need help with exploits.
Have you tried this one?
viewtopic.php?f=103&t=29411&p=175355&hi ... in#p175355
viewtopic.php?f=103&t=29411&p=175355&hi ... in#p175355
-
- Advanced User
- Posts: 1440
- Joined: Wed Apr 15, 2009 10:07 am
Re: Need help with exploits.
i know about it but since the old trac is password protected now i cant look at the diffs.
- Gries
- Posts: 307
- Joined: Fri Jun 17, 2011 9:45 am
Re: Need help with exploits.
Here you go:JMD wrote:i know about it but since the old trac is password protected now i cant look at the diffs.
http://trac.l2jfree.com/l2jserver/changeset/6477
Code: Select all
Index: /branches/unstable/L2J_Server_BETA/java/com/l2jserver/gameserver/network/clientpackets/AuthLogin.java
===================================================================
--- /branches/unstable/L2J_Server_BETA/java/com/l2jserver/gameserver/network/clientpackets/AuthLogin.java (revision 6365)
+++ /branches/unstable/L2J_Server_BETA/java/com/l2jserver/gameserver/network/clientpackets/AuthLogin.java (revision 6477)
@@ -72,7 +72,14 @@
if (client.getAccountName() == null)
{
- client.setAccountName(_loginName);
- LoginServerThread.getInstance().addGameServerLogin(_loginName, client);
- LoginServerThread.getInstance().addWaitingClientAndSendRequest(_loginName, client, key);
+ // Preventing duplicate login in case client login server socket was disconnected or this packet was not sent yet
+ if (LoginServerThread.getInstance().addGameServerLogin(_loginName, client))
+ {
+ client.setAccountName(_loginName);
+ LoginServerThread.getInstance().addWaitingClientAndSendRequest(_loginName, client, key);
+ }
+ else
+ {
+ client.close((L2GameServerPacket) null);
+ }
}
}
Index: /branches/unstable/L2J_Server_BETA/java/com/l2jserver/gameserver/LoginServerThread.java
===================================================================
--- /branches/unstable/L2J_Server_BETA/java/com/l2jserver/gameserver/LoginServerThread.java (revision 6365)
+++ /branches/unstable/L2J_Server_BETA/java/com/l2jserver/gameserver/LoginServerThread.java (revision 6477)
@@ -462,8 +462,9 @@
* @param account the account
* @param client the client
- */
- public void addGameServerLogin(String account, L2GameClient client)
- {
- _accountsInGameServer.put(account, client);
+ * @return {@code true} if account was not already logged in, {@code false} otherwise
+ */
+ public boolean addGameServerLogin(String account, L2GameClient client)
+ {
+ return _accountsInGameServer.putIfAbsent(account, client) == null;
-
- Advanced User
- Posts: 1440
- Joined: Wed Apr 15, 2009 10:07 am
- Gries
- Posts: 307
- Joined: Fri Jun 17, 2011 9:45 am
Re: Need help with exploits.
Probably this one too
viewtopic.php?f=77&t=29776
viewtopic.php?f=77&t=29776
-
- Advanced User
- Posts: 1440
- Joined: Wed Apr 15, 2009 10:07 am
- Gries
- Posts: 307
- Joined: Fri Jun 17, 2011 9:45 am
Re: Need help with exploits in CT2.4 (fixes inside)
It appears that L2jFree site is now down, can't check changes anymore now