Opening up the script files, I was looking for any lazy eval exploits. The way I find exploits is by opening up a mod and looking through all of its scripts for a few identifiers that could point to a vulnerability. Hopefully, at the end of this, you’ll understand how the TFAR exploit works, and how I created it from my initial thought. It’s going to be different than how I normally explain exploits. To best explain my logic, I am going to take you down the path of how I figured out this exploit. If you do not know what Lazy Evaluation is, I recommend reading that previous post to get a grasp on this style of exploit. I am going to dive directly into the code that drives TFAR, and do my best at explaining a type of lazy eval code execution that is much more complex than the previous exploit I covered. I am not going to go into how the mod works, you can check it out here. Everyone who has played Arma for an extended period has come across TFAR, Task Force Arrowhead Radio.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |