Just-released Minecraft exploit makes it easy to crash game servers
#1
Is MCServer vulnerable to this?
http://arstechnica.com/security/2015/04/...e-servers/
Reply
Thanks given by:
#2
This was already asked about a week ago Wink https://forum.cuberite.org/showthread.php?tid=1878

I think xoft already fixed it, but I'm not completely sure.
Reply
Thanks given by:
#3
It's not exactly fixed, it's only that MCS has been immune to that one particular piece of code; however, if someone were to modify the code just a bit (go from 300 lists to 250 lists), they could still cause slight lag on the server. The server won't run out of memory nor use extreme amounts of CPU, it will just spend a bit more time decoding packets from that particular client, and then it kicks them right afterwards, so no more parsing.

True, it could still cause problems on tight architectures such as the RasPi, those are more RAM and CPU sensitive than x86-based platforms.
Reply
Thanks given by:




Users browsing this thread: 2 Guest(s)