puppyslush Posted March 6, 2019 Report Share Posted March 6, 2019 It appears that some oldschool rsps clients have a long standing bugs that could be exploited to take over your PC. I could now conclude this isn't a deliberate action but the bug could still be abused. Considering that the community desperately wants updates for the game and Jagex barely does any updates for the PvP Community, thus making RSPSes the only place to go where you can practice, I strongly urge you run all RSPS clients in https://www.sandboxie.com/ Spoiler I was informed that some members who played BS had their OSRS accounts hacked, so I took the opportunity to look game files and a couple of abnormalities that raised a number of red flags included a line that executes external programs(like .exes) that are not directly related to classloading process of the BS client. Furthermore, backstepping the code, it appears that this method4741 is only fired upon command from the BS server, so I can't see what is being run. I could only hazard a guess that the server could remotely install and run malware into your computer. This means that virus scanning the battlelite client or the gamepack.jar will not yield any results as any malware is contained somewhere else is is only downloaded to your computer on command. The last sketchy signature of this method is the line to execute external program only appears to run on windows. I am not an expert at reverse engineering, and my assessment could also mean a pile of junk...so any other members with more experience in this field, please kindly take a look: gamepack.jar Remember, do not run untrusted software, and if you totally have to, use a virtual machine or sandbox the program Link to comment Share on other sites More sharing options...
Kye Posted March 6, 2019 Report Share Posted March 6, 2019 thank u papa slush Link to comment Share on other sites More sharing options...
Scims Posted March 6, 2019 Report Share Posted March 6, 2019 stop playing shit rsps and make a clan on the real game Link to comment Share on other sites More sharing options...
Brap Posted March 6, 2019 Report Share Posted March 6, 2019 lmfao people playing loser versions of the game stay losing, shortened that paragraph down to just the core elements. Link to comment Share on other sites More sharing options...
Royce Posted March 6, 2019 Report Share Posted March 6, 2019 Deserved for all losers hiding there Lord Ex 1 Link to comment Share on other sites More sharing options...
Obs Posted March 6, 2019 Report Share Posted March 6, 2019 ty Link to comment Share on other sites More sharing options...
COMPILE THE INTEL Posted March 6, 2019 Report Share Posted March 6, 2019 blame @debb Link to comment Share on other sites More sharing options...
Lionel Posted March 6, 2019 Report Share Posted March 6, 2019 LMFA0 this motherfucker Link to comment Share on other sites More sharing options...
Pillow Posted March 6, 2019 Report Share Posted March 6, 2019 Fucking idiots playing a rsps and not actual runescape Opticals 1 Link to comment Share on other sites More sharing options...
Satans Posted March 6, 2019 Report Share Posted March 6, 2019 Lol @ p servers Link to comment Share on other sites More sharing options...
Backstabbed Posted March 6, 2019 Report Share Posted March 6, 2019 1 hour ago, Sharkbrew Warrior said: stop playing shit rsps and make a clan on the real game Opticals 1 Link to comment Share on other sites More sharing options...
Killer Kamal Posted March 6, 2019 Report Share Posted March 6, 2019 i'd rather catch a virus than participate in this cancer era you guys call clanning Opticals and Jaimy 2 Link to comment Share on other sites More sharing options...
Stl Arrow Posted March 6, 2019 Report Share Posted March 6, 2019 Luv ya slush Sybum 1 Link to comment Share on other sites More sharing options...
Uzi. Posted March 6, 2019 Report Share Posted March 6, 2019 I got a condom on my computer 24/7, gl. Link to comment Share on other sites More sharing options...
Dead Ts Posted March 6, 2019 Report Share Posted March 6, 2019 p servers in 2019 Link to comment Share on other sites More sharing options...
Maaku Posted March 6, 2019 Report Share Posted March 6, 2019 you brainos just need to kys yourselfs Link to comment Share on other sites More sharing options...
Ace Krave Posted March 6, 2019 Report Share Posted March 6, 2019 they all closed yesterday and moving to xlpc anyways Link to comment Share on other sites More sharing options...
nawe Posted March 6, 2019 Report Share Posted March 6, 2019 hmmm Link to comment Share on other sites More sharing options...
Yak Posted March 6, 2019 Report Share Posted March 6, 2019 Hf with a rat on pc Link to comment Share on other sites More sharing options...
Matti Posted March 6, 2019 Report Share Posted March 6, 2019 their own fault if they decide to play scuffed version of the game Link to comment Share on other sites More sharing options...
ultama Posted March 6, 2019 Report Share Posted March 6, 2019 @puppyslushthe same method is being ran in the original runelite client (albeit different variable names, same functionallity). You didn't include the entire segment of code either: Link to comment Share on other sites More sharing options...
Sybren Posted March 6, 2019 Report Share Posted March 6, 2019 P servers are the biggest waste of time. Least stable and the owners could go rogue at any time they want. Link to comment Share on other sites More sharing options...
puppyslush Posted March 6, 2019 Author Report Share Posted March 6, 2019 45 minutes ago, ultama said: @puppyslushthe same method is being ran in the original runelite client (albeit different variable names, same functionallity). You didn't include the entire segment of code either: Do you have a link to the runelite source? Also posting the entire method is irrelevant as the the line that raises the red flag is this one: I can't see any plausible reason why the the loader from bscape has this line in there because it is essentially used for executing external programs ---- Edit: Actually I managed to think of reason where the client needs to open up a web browser for example, but I would say other methods of executing a page request is far safer like using Desktop class to launch pages, and possibly even hardcode the URL as it is possible for MiTM attacks to launch pages that download external programs. Perhaps it is an oversight on Palin's part as bscape is one of the most famous RSPSes out there but like I said, we need more people to look at this especially with rs accounts at risk here. Link to comment Share on other sites More sharing options...
puppyslush Posted March 6, 2019 Author Report Share Posted March 6, 2019 56 minutes ago, ultama said: @puppyslushthe same method is being ran in the original runelite client (albeit different variable names, same functionallity). You didn't include the entire segment of code either: I just taken a look at Runelite and they indeed have a similar function, but they chose to use the Desktop class instead https://github.com/runelite/runelite/blob/8247163fee7165825c46281d671063fc3761046a/runelite-client/src/main/java/net/runelite/client/plugins/info/JRichTextPane.java#L61 Link to comment Share on other sites More sharing options...
ultama Posted March 6, 2019 Report Share Posted March 6, 2019 Just now, puppyslush said: I just taken a look at Runelite and they indeed have a similar function, but they chose to use the Desktop class instead https://github.com/runelite/runelite/blob/8247163fee7165825c46281d671063fc3761046a/runelite-client/src/main/java/net/runelite/client/plugins/info/JRichTextPane.java#L61 https://github.com/runelite/runelite/commit/2dd80f9b597d6f8800af59bddfd0d33ddb895e14 was where I got the code from. Old version and whatever, but need to compare it to the original source to ensure there's nothing dodgy. Is it dodgy? yes, especially considering there's no validation or anything to check URLs but the risk of BS being a rat is as equal as it is for runelite. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now