Recently, a member of the Unreal community was being bullied on an Unreal Tournament server. Either an admin or the server owner managed to open a porn site on the client's computer.
Although I do not possess the code they were using, they most likely used this function:
Code: Select all
GetPlayerOwner().ConsoleCommand("start http://www.epicgames.com/");
This can be, of course changed to any web link. It can be called on a client at a rapid rate, and without their consent.
Here's an example of a server opening a blank web page every tick on all its clients:
https://cdn.discordapp.com/attachments/ ... 04x302.mp4
Rest in peace, media tag
The computer gets slowed to a crawl, the only way to stop it being to close Unreal, which can be a real pain when browser windows are continuously popping up. My laptop's Core 2 Extreme was running full time.
Of course that's not the only command that can be abused. Here's a version that does the following:
- Switches between fullscreen and windowed mode with the "togglefullscreen" command.
- Changes the game to an unsupported resolution, with the "setres" command.
- Plays loud glass breaking sounds.
- Forces the client to say humiliating things in chat.
- Changes the game's brightness from 0.1 to 1, causing a potentially seizure-inducing effect.
- Opens the infamous "yotube.com" phishing site at random intervals, as an example of how it could be used to put malware on a client's machine.
- Plays music in the web browser, which is incredibly difficult to turn off.
- Opens a "How to tie a noose" tutorial, as an example of how you can use this in a hurtful way.
- Maxes out the game's sound and music volumes, as well as lowers the sample rate to 8000Hz.
- Cranks the GUI mouse sensitivity up to 500, making it unusable with the mouse.
- Changes the client's name to something mean.
- Disables frame rate limit for OpenGL (and DX I think, too.)
- Saves these screwed up settings.
- Temporarily sets the client's view bob to 10.
Note that the "yotube" routine was commented out, because the machine I ran this on is running Windows 7, and I did not want to risk a virus infection.
https://cdn.discordapp.com/attachments/ ... 20x240.mp4
The computer is damn near inoperable here, the only way I managed to escape it was to Alt+F4 and log out.
After running it a few times, it actually managed to corrupt the game's .ini and the game refuses to start now due to a vague graphics error.
That's about it, I just wanted to raise awareness among the 227 developers about this potentially very big security hole.
I would post the source code here, if I knew for sure that some scumbag script kiddie wasn't gonna use it. If you're a 227 dev and want it, just PM me.
