ASP.NET HACK VIA BF2

[AfterDune]

Oh please. Nobody's people taking over your system if you install the .Net Framework and such. And certainly not through BF2.

If someone can access your system (through whatever means), there's an issue with your own security. Doesn't have to do with BF2, PR or the .Net Framework.

[Mineral]

This seems to be a issue of paranoia, all you have said so far is you re-installed your pc and then joined HOG and suddenly it was all bad again because of bad admins. I wouldn't call that evidence IMO. More of a trust issue.

You most likely have some malicious software or a hole in your internet security.

[Kitty cat]

So the computer experts who work for a virus company who know about the private server hacks exploit with bf2 and world of Warcraft know nothing. Me installing bf2 project reality today just to see if the fcking guy would hack my system one more time catching him red handed was nothing. You should really believe me and just understand, when I install bf2 project reality and my system is crash free before hand to crash again and my browser being exploited is no joke ok. Do you even realize what damage thi guy did to the whole project reality community how many players dont play your game anymore because of this exploit which can only be done on a private server via project reality server or a private world of warcraft server which i do not play. It's no joke only 4 admins where on, I can accurately point the finger if you want me to. But you wouldn't believe me because I have no proof.

[Kitty cat]

I well get the exact exploit name ok may take me an hour to find it, but ill find it for you since you gave me a free game to play.

[Nate.]

I recommend you structurize your answers a bit more, have a look at your sentences and start argueing in a normal way. Instead of saying "trust me trust me" it'd be good If you'd have described what happened to you in a more precise way. Also bring up some sources about that vast "security breach" that there is and that you read about.

If you want to point the finger at someone, do it via PM.

[Kitty cat]

Ok here is a quote from a security expert.



Do you play games online and if so, do you use unoffical severs to play games (an example would be battlefield, world of warcraft). Some people do so they can use cheat and game hack and such. the problem with that is you must trust the people running the unoffical servers for those games and that'll be the backdoor if the admins of those places decide to be nosy or malicious.

[Kitty cat]

As I also said my computer was working fine untill I installed bf2 and went onto the hog server which I didd all today as I have the disks for pr so it didnt take me anytime to install it. Now my whole computer is fcked I really don't care how and why anymore all I know it was HOG server so if you don't believe me because I have no evidence i fully understand and I dont blame you I would want some sort of conclusion to why or how also all i know is it happens when I play this game which I FCKIN LOVE. So the hacker won let me say, and kept me off this game .

[Nate.]

Sorry, but I don't think a "security expert" would type that way.
You sure this is a quote?

Still, sources.
Still, more information

I'll leave this to the tech-guys because I have no idea of such things, I just wanted to tell you how you can make a point instead of randomly accusing bf2/pr admins to invade your system.

Also, there's an "edit" function for your posts, do not do double-posts.

[WeeD-KilleR]

HOG isn't an unoffical server tho. It is running a legimate version and it doesn't even allow pirated version of BF2 (unlike other PR server). Can you give me the specifiaction of the exploit? Or anything usefull expect from your mysterious computer anti-virus hacker expert?

I mean I could go ahead and say: trust me, my mom (51 years old) works for microsoft as NSA agent coding the backdoors.

The file you pointed as was EMPTY. Completly empty, it didn't contain any data. And already got told WHY it is a .com file. (Which is an executable file).

EDIT: EA Battlefield 2 and Battlefield 2142 Multiple Arbitrary File Upload Vulnerabilities There we go.

[Kitty cat]

I have been playing pr since it came out, I have also had no security issues after a certain clan was abnned for hacking. But let me say this, since then that clan has gained access to hog and now the problems are back which is clear evidence and not a coincidence I hate assuming but its to fckin obvouis and I am so mad im making an *** out of myself, no because the hacker but because this game is amazing and I dont want this fckin loser destroying it. SO again you are welcome I hope you find him so random way for yourself and understand kitty cat is pr's friend untill then Im scewed from plaything this game and it doesnt bother me, what bothers me is he is still there and might destroy someone elses computer how many victims does he have ? Im now going offline and doing a full reboot of my whole system which i have done everytime I install this game. So just keep you eyes open and you dont have to believe me I would be happy for you to figure it out yourself if you can, if its even possible to figure out I dunno.

[WeeD-KilleR]

That would mean all PR players loading the server banner of the attacker (means click on the server info tab) would had been compromised. That indeed is a huge security hole.

[Kitty cat]

Seriously dude I really don't know how, but I know when, and what. I wouldn't want to see a small community get any smaller but you have to ask why is pr so small when its an awesome game. Random freezing and crashing don't happen for me, I have installed everything on my system without flaw. It's this game that I love and would be problem free if I didn't love it so much.

[WeeD-KilleR]

The exploit I linked:

- can be caused by any server. So no need to finger point to HOG. You don't need to join the server
- Has nothing to do with the .NET framework, it's simply bad coding by DICE
- nobody takes you seriously when you speak like a tinfoil guy: "they are spying on me! They are spying on me!"
- I doubt that any PR server is currently using this exploit and when a server actually is, that would mean at least a big chunk of the PR community is compromised.
- Also a trojan normaly shouldn't slow down your PC or causes crashes. That would be silly because it gives away the trojan. May be another cause.

[Spook]

Dude, first of all start using proper grammar. I mean you are a native english speaker and it is almost impossible to fully understand your posts. My impression of you is a 12 year old, clueless kid raging against some people from the PR community for personal reasons. Bringing in ridiculous conspiracy theories about a whole community which is allegedly dedicated to destroy the Project Reality fanbase. Having no proofs at all, purposely ignoring every helpful post written in here and keep repeating your illogical opinions, being a total newbie at IT-stuff and quoting some words from a shady IT-expert from some unkown anti-virus company who sounds like he found out how to turn on a PC 2 days ago.

So either you are a raging immature player, or simply a troll seeking attention. If you want us to take your seriously, you should start answering to the other posts instead of dropping the F-bomb in every sentence twice.

And accusing a single person of hacking or something that might affect his reputation without any acutal evidence is a no-go. Expanding that to slandering a whole community is simply unforgivable.

[DesmoLocke]

Also you are very fckin welcome for me pointing this out to you, you should be lucky I love your game so much and the HOG server hugs to. I would never wanna see hog tookin down thats a big blow the the already small community which should be a fckin empire by now. I wonder why project reality doesnt have that many players in the community and that bugs me more then this fckin hacker who is a fckin NOBODY.

How old are you?

I'm honestly surprised the moderators let you keep this up this long.

[__Super_6__5__]

We are not hacking your system nor any others, if you have problems with admins please post them to our forums, we dont allow anyone to hack and they are banned forever if caught.

bring proof, not accusations, concerns are even ok, be polite and non argumenative and you will have a captive aduience.

Thank you to all who visit our server

=HOG=__Super_6__5__

[saXoni]

This thread is pretty cool. Do keep going.

[AncientMan]

This thread is pretty cool. Do keep going.

Naa, we're done.

No one is hacking your computer. .NET Framework is installed by default on every Windows OS since Vista. As long as you keep your computer up to date, exploits in .NET Framework shouldn't be an issue. If you have found you have been hacked due to an exploit in the .NET Framework, please report it to Microsoft, I'm sure they will be very interested to hear.

As for the issue with the sponsor logo and community logo, the reason for the .com file is because of PRSPY using these variables for some stuff, mainly, linking to the server's website. The issue with those files has been fixed a long time ago for v1.0's menu, it's well known. If you are seriously paranoid about it, simply wait for the new version . Otherwise, with the 8 years PR's been running, I haven't heard of anyone gaining viruses because of our game, I think you'll be fine. But the choice is yours of course.