EQEmulator Forums

EQEmulator Forums (https://www.eqemulator.org/forums/index.php)
-   Development::Server Code Submissions (https://www.eqemulator.org/forums/forumdisplay.php?f=669)
-   -   Public Login Server Exploit (https://www.eqemulator.org/forums/showthread.php?t=33888)

image 07-21-2011 10:17 AM
Public Login Server Exploit
 
in Client.cpp of the Login Server the logged in flag is set too early:

Code:
void Client::Handle_Login(const char* data, unsigned int size)
{
        if(status != cs_waiting_for_login)
        {
                server_log->Log(log_network_error, "Login recieved after already having logged in.");
                return;
        }

        if((size - 12) % 8 != 0)
        {
                server_log->Log(log_network_error, "Login recieved packet of size: %u, this would cause a block corruption, discarding.", size);
                return;
        }

        status = cs_logged_in; // this should be removed ****
It belongs further down:

Code:

        if(server.db->GetLoginDataFromAccountName(e_user, d_pass_hash, d_account_id, groupid, is_activated) == false)
        {
                server_log->Log(log_client_error, "Error logging in, user %s does not exist in the database.", e_user.c_str());
                result = false;
        }
        else
        {
                if(d_pass_hash.compare(e_hash) == 0)
                {
                        result = true;
                }
                else
                {
                        result = false;
                }

        if(result)
        {
                status = cs_logged_in; // we add it here - the password was valid


All times are GMT -4. The time now is 06:30 AM.

Powered by vBulletin®, Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.