New WC3 exploit

[Deaod]

Dont know, maybe someone should make a news or an announcement to be careful with new custom maps, since a bug in WC3 that allows executing machine code was revealed earlier today.

Proof-of-concept map (run in windowed mode)

SFilip also made an announcement on TheHelper.net dealing with this bug.

 

[Viikuna]

Virus maps, anyone?

Hope they can fix it without breaking anything..

If you are interested about the subject, there is some interesting stuff:

http://www.thehelper.net/forums/showthread.php?t=125071

http://www.thehelper.net/forums/showthread.php?t=125339

http://www.wc3c.net/showthread.php?t=105677

Akolyt0r in TheHelper:

So please dont play any new public maps, and especially no unknown russian maps... since the russian community was aware of this exploit a little bit earlier ...and someone already might have created something like that *evil*

 

[MysTaFoX]

Well this stinks..
Now with everyone knowing all those like... "Blue Screen of Death" .etc maps, Now we might be attacked from things far worse..

I'm scared to download that map you showed us now.

 

[Eleandor]

Comodo seems to detect it, so I still feel somewhat safe.

 

[Eccho]

But people should be aware of this major security flaw.

 

[viiva]

Yeah best to keep your guard untill a patch arrives.

 

[Kwaliti]

That's why you should never update your game past 1.21b

 

[X.e.r.e.X]

Thank god I don't play WC3 anymore

 

[Xarwin]

Blizzard should fix this bug asap, someone heard something about blizzard theirselves?

 

[Eccho]

Yes, the issue has been reported.

 

[br_shadow]

So download virus tested maps from big sites not random maps from battle.net as surely that's the place they will hit first.

 

[HappyTauren]

Guys, don't you see how awesome this is? Executing machine code makes it able to do JUST ANYTHING It's as if there are no limits to wc3 mapmaking anymore

 

[Eleandor]

Exactly the reason why this isn't awesome at all.

 

[HappyTauren]

Well.. it's good unless exploited.. and people are good, so they won't do anything evil.. right?

 

[Kwaliti]

Well.. it's good unless exploited.. and people are good, so they won't do anything evil.. right?

You sarcastic naive little boy...

 

[Captain Griffen]

So download virus tested maps from big sites not random maps from battle.net as surely that's the place they will hit first.

Virus testing the map file won't help. It might be detected while running it in game through a virus scanner if your AV has good enough heuristics and detects the possible buffer overflow attack, but there's certainly no guarentee of that.

 

[woxx]

This sucks, now im a little afraid to download maps

 

[Pyritie]

How the heck people manage to find these things is beyond me. D:

I mean really.

 

[syltman]

Well, joining those porno lolololol maps is not so clever now.

 

[TheDivineBoss]

Gentlemen, I think we found our cure for the 'DotA' infection that roams on Battle.net.

 

[X.e.r.e.X]

Gentlemen, I think we found our cure for the 'DotA' infection that roams on Battle.net.

If that happens I will come back to battle.net

 

[Captain Griffen]

Surely since they are all no DL, unless they suspect that the DotA developers would booby trap their own map, that won't affect DotA, but rather all other maps?

 

[LiOneSS]

That's why you should never update your game past 1.21b

same here, lol.
And as HT said, this could be as useful as it could be harmful :|

 

[TheDivineBoss]

Surely since they are all no DL, unless they suspect that the DotA developers would booby trap their own map, that won't affect DotA, but rather all other maps?

Who said the devteam would release the map, hehe.

 

[Tleno]

Great...
I think we shouldn't play even known maps... It might be contagious...
Now we need to wait until Blizzard will fix everything. Or atleast make Norton/Kaspersky/Others do it for them...

 

[Dr Super Good]

Just DL the map, and scan it's jass script manually for anything suspecious. You should not have a vampirisim map with a 15000 line jass script of all veriable names and hex numbers with the C2I and I2C functions.

They should simply add a notification if WC3 trys to do this preventing it until a user says yes or no. Thus preventing unauthorized code from running.

Removing it could end up being something to regret, like if the H2I bug was removed. Codeless save systems and more complex systems may be possiable with this. However I would advise not playing maps until you check their code for any exploits.

 

[Misha]

eh.. now hackers attack even maps.. where is this world goin' too.

 

[Ham Ham]

BLAME JASS!!!!
lol, better I stop downloading maps from epicwar

 

[Asgard_Ragna]

Mhh i tried the itest map, it simply doesn't load.

 

[PurplePoot]

People are getting a little overhyped about this.

 

[Ralle]

Gentlemen, I think we found our cure for the 'DotA' infection that roams on Battle.net.

Surely since they are all no DL, unless they suspect that the DotA developers would booby trap their own map, that won't affect DotA, but rather all other maps?

I know some site owners. We could make a conspiracy and force-delete all dotamaps from people's computers and then edit their hosts file to redirect all dota download sites to infected version sites

 

[Smiley the Dwarf]

Hahahahaha this is becoming humorous, I think that this exploit could be seriously exploited. for instance an MMO that runs through Warcraft III, but then on the downside, a game that makes your computer crash every time you turn it on.

 

[TheDivineBoss]

I know some site owners. We could make a conspiracy and force-delete all dotamaps from people's computers and then edit their hosts file to redirect all dota download sites to infected version sites

Ok it's formal now, the Hive Admin agrees with me. And so did the world e-leaders of other sites.

I give Operation Mosquitoe green light.

 

[Dr Super Good]

Working on a save load system without the use of typed strings would be cool.

 

[Ungerbla]

Nooooo!!

 

[Billy the Cat]

This thing is quite scary, what are all the options with some exploit like that except for viruses?

 

[Devine]

I don't play wc3 anyways.

 

[Billy the Cat]

How many people on this site don't play Warcraft 3?
I hear that a lot, but you would think a lot of people do.

Thanks for telling us about this problem.

 

[Xezko]

well, simply try to download tested and aprovved maps for this site or another great site, and DONT DOWNLOAD from epicwar... (Blessed god, thanks to my uber-slow conexxion, i didnt updated Wc3 since the 1.22!!)

 

[Grim]

How many people on this site don't play Warcraft 3?
I hear that a lot, but you would think a lot of people do.

Thanks for telling us about this problem.

To be honest a large number of us no longer make warcraft III maps or resources, as well as many of us who no longer play warcraft III at all
Nevertheless this is indeed slightly worrying, and I hope Blizzard make patching this a priority.

 

[ghost52095]

There seems to be a lot of people hoping Blizzard will patch the exploit. I, for one, think that Blizzard is just going to be lazy, say "Screw it", and shut the whole damn WC3 server system down.

 

[Amish_KOTP]

People are getting a little overhyped about this.

It's the warcraft swine flu. It's less of a problem than the people make it out to be.

But in all honesty still kinda sucks.

 

[PurplePoot]

It's the warcraft swine flu. It's less of a problem than the people make it out to be.

But in all honesty still kinda sucks.

Not really. The kind of people who know how to do this stuff aren't the kind of people who do (in Warcraft, that is).

Now, there might be one person who does it, but it won't make much of a difference.

 

[Bobo_The_Kodo]

There seems to be a lot of people hoping Blizzard will patch the exploit. I, for one, think that Blizzard is just going to be lazy, say "Screw it", and shut the whole damn WC3 server system down.

Well apparently you think wrong

 

[Hoernchen]

I reckon do not remove this 'exploit' but just make it safe, so it cannot access any files etc that aren't supposed to be accessed. As people said, this is the key to saving save-load codes without printing 50 chars.

 

[Nestharus]

I say that wc3 should be built more around these concepts... as long as you limit it so that it cannot access files besides maybe encrypted text files, I don't see why this is such a big deal..

Hell, open up the b.net socket stuff to the public too so that we can have those many dedicated servers get more use >: |.

As long as you limit it, it should be fine, but this is good... I'd been messing with this stuff for awhile too ^_^, was planning on introducing some support for it in MFN, lol....

Then again, the license agreement states that you may not mess with wc3's socket stuff : P, so I guess they'd never do that. But it doesn't state anything about the memory addresses, hmmz.

Also, you could use this stuff to get into the sock stuff and move a lot of the concepts of RTC on to wc3 b.net o-o. Then again, there would probably be a lot of desync issues to be worked out.

Oh well, interesting stuff guys. I just hope some retards with evil intents who know how to work this stuff don't mess with it -.-.

 

[Draknyte1]

this isnt soooo threatening....... Nuclear halocaust is

 

[Tleno]

Really? You mean this bug can cause nuclear war? Ralle, what we should sabotage first: Pentagon or Microsoft?

 

[Draknyte1]

bill gates..... because he is in afica or some random country we nuke them all Gwhahahahahahaha...... im evil

 

[Tleno]

You think some american general will say "Oh look, Warcraft porn "are you a retard" map! I love them, they are so hard!" and then download our trap? Lol. I say we need to brainwash George Bush and make him kill his pet Barney (dog).