From db5dbe795d5485977aa7522f2000f0fe2cda0a29 Mon Sep 17 00:00:00 2001 From: Lance Date: Fri, 17 Nov 2006 17:27:19 +0000 Subject: * Fixed potential hack by modifying packet of whispers. modified Changelog-Trunk.txt modified src/map/clif.c git-svn-id: https://rathena.svn.sourceforge.net/svnroot/rathena/trunk@9249 54d463be-8e91-2dee-dedb-b68131a5f0ec --- Changelog-Trunk.txt | 1 + src/map/clif.c | 15 +++++++++++++-- 2 files changed, 14 insertions(+), 2 deletions(-) diff --git a/Changelog-Trunk.txt b/Changelog-Trunk.txt index 432eece5f..ab0b9b5b3 100644 --- a/Changelog-Trunk.txt +++ b/Changelog-Trunk.txt @@ -4,6 +4,7 @@ AS OF SVN REV. 5091, WE ARE NOW USING TRUNK. ALL UNTESTED BUGFIXES/FEATURES GO IF YOU HAVE A WORKING AND TESTED BUGFIX PUT IT INTO STABLE AS WELL AS TRUNK. 2006/11/17 + * Fixed potential hack by modifying packet of whispers. [Lance] * Fixed potential crash in IRC processing message with '%' using *printf. [Lance] * Fixed memory leaking caused by homun_data not freed when removed. [Lance] * Fixed client not validating the chat-kick-request packet, which can cause diff --git a/src/map/clif.c b/src/map/clif.c index 63c334492..9ef8c7b94 100644 --- a/src/map/clif.c +++ b/src/map/clif.c @@ -9055,12 +9055,23 @@ void clif_parse_Wis(int fd, struct map_session_data *sd) { // S 0096 .w status.name, sd->bl.id); + clif_GM_kick(sd,sd,0); + return; + } + + gm_command = (char*)aMallocA(speclen * sizeof(char)); // 24+3+(RFIFOW(fd,2)-28)+1 or 24+3+(strlen(RFIFOP(fd,28))+1 (size can be wrong with hacker) sprintf(gm_command, "%s : %s", sd->status.name, RFIFOP(fd,28)); if ((is_charcommand(fd, sd, gm_command) != CharCommand_None) || -- cgit v1.2.3-70-g09d2