Hi
As of recent some server got hacked, the hacker used a RCE exploit in the 3.3.5a client. There has been a fix made for this as linked in reddit post. https://www.reddit.com/r/wowservers/...5_game_client/
However this is not something that you can use on Warmane servers. What can we do as players to maximise our security and what is Warmane going to do ?
-
Member
Warmane Security - Technical Question about RCE Exploit for 3.3.5 clients
Edited: July 29, 2024 Reason: Removed content breaking rules.
-
Rock n' Roll Racing Champion
That server 1) was not hacked through an exploit in the client (that makes no sense at all) and 2) does not use the 3.3.5a client.
You guys would do well to learn how things work before spreading misinformation.
What should warmane do about another server getting hacked?Edited: July 29, 2024
-
Member
Can you show me what is correct then? Cause as i understand it Warmane uses the 3.3.5a client and through that hackers has the potential to send malicious code to my machine and thus perhaps take my information. Where do i see what client Warmane uses and if that also has the potential for the same exploit ? Warmane should not do anything regards to a other server getting hacked, that was not the point by this post. Im just concerned for my security as a player and using the client.
This post https://www.reddit.com/r/wowservers/...world_servers/ and https://www.reddit.com/r/wowservers/...5_game_client/
The posts explain what has happened and that if the hackers get into Warmane or this example how they can harm my machine or steal my information.
If this is not correct please show me what is then, as ive looked everywhere on Warmane and cant find any relevant information. Which is why i believe Warmane should do a statement to make sure people are safe and can play safely
-
Rock n' Roll Racing Champion
Then you understood wrong.
I already explained here: https://forum.warmane.com/showthread...=1#post3225793
Also, that server was NOT hacked through a warden exploit.
-
Member
Do you have any sources for how it got hacked, it will make it easier to clear my mind by reading it on my own. I read your post and dont understand your explanation.
"1) This RCE allows the server owner to execute code on the player's machine. It does NOT allow other players to execute code on your machine."
But if Warmane gets hacked and the hackers get access to the RCE, then wouldnt the hackers be able to execute code through the client?
-
Rock n' Roll Racing Champion
I have no idea, but there is zero indication thus far that they got hacked through a bug in the warden protocol. With time they will tell what happened, or not.
That is correct, but what are they supposed to do about it?
-
Forum Veteran
Your on the world wide Web? You crazy? You know how many hackers, viruses there is that can destroy your whole life.
-
Member
Even if they hack the server and try to execute any command on player's pc it could only be a basic operation. Code that can can affect your system configuration, files, etc. requires elevated rights, so this out-dated exploit has 0 chance to bypass Windows security.
-
Mistress of Regulation
Do not apply that "fix" or else you will not be able to play on Warmane realms. The client will crash. Just don't play on servers that you do not trust.
Warmane is under no risk about this exploit. No further topics about this subject will be allowed in the forums.
