Channel down Hack: HACK_DETECT

sarucan · 12/22/2013, 20:30

Channel syserr :

SYSERR: Dec 22 18:51:26 :: Hack: HACK_DETECT: yFT "Å@´å«Á/Áª>f‘:Ni¼ë,Å[º®g^ğØŒiw^ya<—}[‹Î ;¯İ1”ÆÃãíìh~AÕT”â‹|+³H‚¾D”wZaÙØ””P¡ÔĞe—,mëNEÍÁñ ×û5ír2æˆÁÍ]?ösğÿ‡Ób*õËø_š@î&P¬hx8"¡*ÆrÚ½

Help

Game version : 34083

.Cyous · 12/22/2013, 22:36

Vor ein paar Tagen wurde ein Channel Downer für die 34K Game releast.
Das Thread wurde aber dann wieder gelöscht..
ich denke mal das es noch keinen fixx dafür gibt.

Mfg

#Phonie · 12/23/2013, 09:14

Quote:

Originally Posted by .HC'Cyous

Vor ein paar Tagen wurde ein Channel Downer für die 34K Game releast.
Das Thread wurde aber dann wieder gelöscht..
ich denke mal das es noch keinen fixx dafür gibt.

Mfg

Hi Hc-Hapo Dj!
"Der Thread" pls. ( Macht nichts bin auch nicht der Beste )

-Jop er hat recht.

~~MartPwnS~~ · 12/23/2013, 13:50

could you send me your game.core file pls if it exists i want to track down this issue.

~~MartPwnS~~ · 12/25/2013, 03:48

Sry for the double post but it looks like an buffer overrun in the CinputHack function im investigating.

€dit

This looks kinda strange why this long buffer value in the backtrace seems like someone is sending specific packets.

Quote:

void (CInputMain * const, LPCHARACTER, const char* (a3))
{
[...]
strlcpy(&v7, a3 + 1, 256);
}

Maybe a3 is to big for this 256 byte buffer anyway what is this line so i removed it completely because it doesnt get used afterwards
v7 is not referenced anywhere.

Quote:

This difference file has been created by IDA

PLEASE ONLY USE FOR TESTING PURPOSES!
IM NOT SURE IF THIS CAUSES CRASHES
ONLY USE WITH CAUTION!

game
000F5753: E8 90
000F5754: 18 90
000F5755: 17 90
000F5756: F1 90
000F5757: FF 90

Maybe the best would be to remove the entire function, since we dont need it.

Quote:

This difference file has been created by IDA

game_r34083_32
removes call from CInputMain::Analyze and CInputDead::Analyze
000FD48B: E8 90
000FD48D: 82 90
000FD48E: FF 90
000FD48F: FF 90

000FCC6B: E8 90
000FCC6C: B0 90
000FCC6D: 8A 90
000FCC6E: FF 90
000FCC6F: FF 90
000FD48B: E8 90
000FD48D: 82 90
000FD48E: FF 90
000FD48F: FF 90

Kind Regards
MartPwnS

JovaProd · 12/26/2013, 14:34

I search fix too...

Quote:

SYSERR: Dec 26 13:19:35 :: Hack: HACK_DETECT: Elysium 0.Ú}öJŽ0.év»CÓ¦Ýú£ß_Ñ0}ºÚŽb±À3¾˜iv…HÜ1uÙÆTîÏÚÁê ÕÝ•&íS£=lK“¾Ë “—§š…¸Â¹æ%ù!L'-d;r¾¥Šô¹q]ÛÁ‚V<ï˜F.äÖFÅDuS¨Ç=X÷SÈàÁŽì<KÒ„—Þ×:r¨°»²S^ µOéÙÑ²Õð,x)%´ž¦úœ?[{y\JõÝàFeÃ2qÉØßLÞGèÁKB1ÑGØÆ*RNoùqˆ.6Õ¹Ç³’Ð+ bžðÒËÐ”ãü^Ä*KûÝì[Zc&&©¦ÉÀ£·r_i'ÖÚ

And after this, my core channel crash ...
Please help

~~AnonyHacks~~ · 12/26/2013, 14:39

Just delete the entire fucntion

JovaProd · 12/26/2013, 15:20

what function ?

~~MartPwnS~~ · 12/26/2013, 15:59

Just take the last DIF that i posted.

~~[iSeven]~~ · 12/26/2013, 19:19

(*(void (__cdecl **)(_DWORD, _DWORD))(**(_DWORD **)(a2 + 44) + 16))(*(_DWORD *)(a2 + 44), 0);
int __cdecl CInputMain__Hack(int a1, int a2, int a3)
{
int result; // eax@1
int v4; // edx@1
int v5; // ecx@1
char v6; // al@1
char v7; // [sp+2Ch] [bp-10Ch]@1
int v8; // [sp+12Ch] [bp-Ch]@1

v8 = *(_DWORD *)_stack_chk_guard__FBSD_1_0;
strlcpy(&v7, a3 + 1, 256);
v6 = CHARACTER__GetName(a2);

sys_err((int)"Hack", 2757, "HACK_DETECT: %s %s", v6);

(*(void (__cdecl **)(_DWORD, _DWORD))(**(_DWORD **)(a2 + 44) + 16))(*(_DWORD *)(a2 + 44), 0);
result = *(_DWORD *)_stack_chk_guard__FBSD_1_0 ^ v8;

if ( *(_DWORD *)_stack_chk_guard__FBSD_1_0 != v8 )
__stack_chk_fail(v5, v4);
return result;
}