Jump to content

[Exploit + fix]Lets hack: Stack subclass skills ( Race condition exploit ).


Recommended Posts

Posted

wont work that way cause l2j uses a lock on subclass if i remember correctly. When something wants to change the class, it must wait in that lock for its turn.

damn >.<

anyway if i'll ever start l2 again i'll try ur way :P

Posted

Anyway those conditions ( l2j was doing fixes that way in the past ) are not the right way to fix problems. A problem can lead to several exploits, blocking the exploit, wont fix the problem. But taking care of the problem itself, will fix all exploits related to them. When i went in some br interlude server some weeks ago, they had some protection ( l2jbrazil ) that you are not allowed to have equiped weapon when you change subclass. Obvious stupid is obvious :) Those checks can be bypassed, the solution is to lock the right function that handles the skill awarding in different cases.

Posted

Anyway those conditions ( l2j was doing fixes that way in the past ) are not the right way to fix problems. A problem can lead to several exploits, blocking the exploit, wont fix the problem. But taking care of the problem itself, will fix all exploits related to them. When i went in some br interlude server some weeks ago, they had some protection ( l2jbrazil ) that you are not allowed to have equiped weapon when you change subclass. Obvious stupid is obvious :) Those checks can be bypassed, the solution is to lock the right function that handles the skill awarding in different cases.

 

And who guarantees that your possible fix doesnt create (new) exploits as well? :D

  • 3 weeks later...
Posted

lol!

it's new. never shared before here!

BUT... a friend discovered this one 1 or 2 years before and we decided not telling it to anyone on web so it wouldnt be fixed by anyone!

but now......dmn you! :P

 

btw.sharing it is allright. but why how to fix it?

Posted

A way i propose is using a lock object that gets locked by both the two methods ( setActiveSubclass and levelUp ) so as they cant race together. Or even using the existing subclass lock they have ( i think ) in l2j. Just try to lock it when getting level up.

 

The idea behind going inside an exploit and figuring how it works is to help us discover more by understanding the mechanisms behind exploits. Btw did you guys find it by chance, just by experimenting with ingame actions ? :)

Posted

The idea behind going inside an exploit and figuring how it works is to help us discover more by understanding the mechanisms behind exploits. Btw did you guys find it by chance, just by experimenting with ingame actions ? :)

the main idea came to my friend and then we tried it and really worked!!! :D

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now


  • Posts

    • try this one instead. The one he shared affects every single NPC/player character in the game, the one I posted only affects player characters  https://drive.google.com/file/d/1UtccbD9e50x3WEnQBab2PTZnBHwpcGYM/view?usp=sharing or perhaps i misunderstood; if you could please post a full explanation of the problem you're having with the files, unfortunately i think whatever you're using to translate to english is a bit bad nevermind, i got what you mean, here's the fix   https://drive.google.com/file/d/1av7OHaGSdnVQtcBgb9MhtiIkxVXy3P2y/view?usp=sharing   CanIngnoreCollision=True CanBeIngnoredCollision=True  
    • <dailyReward days="28" autoOpen="true" minimumOnlineTimeSeconds="30" oneRewardPerIP="true" resetIfMissDay="true">   For now, I have these settings in the XML—this is the V1 version I created, though I plan to make further improvements over time. Of course, I’ll also add more protections—MAC, HWID, and perhaps others like account-based restrictions—to make it more secure. We can also implement non-tradable items to further enhance the system's security. I’ll keep posting updates and refining both the system and the interface. I might make a video tomorrow; if you look at the top, you'll see the "auto-open" feature can be toggled on or off, allowing users to rely solely on the `.daily` command. Cheers! Note: If I sell it in this state, I’ll provide support and roll out updates to users. I’m not forcing anyone to buy anything; I’d even provide the patch files so that anyone with the necessary skills can add features, modify it, or improve it further.
    • If the problem is that the target is lost, the action of aiming at another character, upon losing collision, does not allow aiming.   This one works as it should, allowing you to target characters
    • MICROTEXT AND WATERMARKS BREAK MOST RENDERINGS Microtext and watermarks aren’t just small decorative details. They are one of the most common reasons a document fails verification, even when it looks decent at first glance. The issue is that these elements are almost impossible to reproduce “by eye.” Microtext requires precise geometry and legibility at a very small size, while a watermark needs the correct density, transparency, and accurate placement relative to other security features. Any deviation becomes obvious during detailed inspection. ▪ What’s most often done wrong: - microtext is drawn too thick or blurry - the watermark is made either too visible or almost invisible - the positioning between microtext and watermark is ignored - the original printing technology isn’t taken into account when choosing density and shape - The stronger the document’s security features, the less room there is for approximation. What matters here isn’t visual similarity, but accurate reproduction of the original technical characteristics. If your document contains microtext and watermarks, this is always an area that requires extra attention. Write to us in DMs. We’ll review your case and point out exactly which details need the highest precision during rendering. › TG: @mustang_service_ms ( https:// t.me/ mustang_service_ms ) › Channel: Mustang Service ( https:// t.me/ +JPpJCETg-xM1NjNl ) #drawing #microtext #photoshop #editing #watermarks
  • Topics

×
×
  • Create New...

Important Information

This community uses essential cookies to function properly. Non-essential cookies and third-party services are used only with your consent. Read our Privacy Policy and We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue..