Com_sprintf exploit...we need help !!!!!!

Hi,
I don’'t know if anyone here can help or at least point me in the proper direction.

I am one of the leaders of clan =KT=

http://ktclan.org

We are one of the last holdout clans still playing RTCW but we use a fast fun version of the bani mod.

We are quite popular for such an old game. You can usually find us in ASE right above or below Happy Penguin.

But now we are being attacked.

With this exploit.

com_sprintf
Qmm can’t help like it did with the vsay exploit.

It seems the attacker is using a bot which logs in as a player…makes it attack and disconnects.

It totally crashes us and it is a constant every 30 min. type of attack.

If you google com_sprintf you will find it is a exploit using an extra long (over 2048) string in the skin file or gun skin file.

THERE IS NO FIX AS OF MARCH 2006

So… can someone point me in the right direction to get help…or to help us to create a patch to get this problem fixed ?

RTCW is old. No one is rushing to patch this. Maybe only 250-500 players left in the game but we love it dearly! If this can’t be fixed, it may be the final straw that breaks RTCW’s back.

NE advice or help would be greatly apperacated.

If the exploit requires an actual connection (rather than just sending one of the connectionless packets) you should be able to block the IP ranges associated with it.

From what we can tell. This is a bot that doesn’t even need the game to be running to get on and drop it’s bomb…at least that’s what our best tech is saying. All you need are the source files which I guess can be found for free on the net.

The attacks are quick…we are sniffing but haven’t pinpointed an IP.

However this isn’t the 1st attack against us and I doubt the last. This person can probaley change IPs at will. A patch that address this specific exploit is needed I think but I’m no programer… that’s why I am asking here.

Larger minds than mine are needed!