06-22-2020, 12:26 PM
(This post was last modified: 07-04-2021, 04:41 PM by Seeky.
Edit Reason: Add info about the USER overflow
)
RACE Header RCE Protection [Seeky]
This code will increase the space allocated for each of the split RACE packet buffers to the maximum size that could be memcpyed into them (0xff, since the length values in the packet header are 1 byte each), preventing the buffer overflow that was used in Star's RCE code. This code was actually made a few weeks before the release of taht code, as an attempt for an antifreeze originally, and turned out to be fixing the same exploit that was being used for his RCE.
WARNING: this code only fixes one specific overflow, it does not protect against the USER overflow and wouldn't protect against any other exploits if they were to be found. For protection against the current known exploits, you should pair this code with USER Overflow Fix or use RACE Packet Validation instead, which protects against both and can also act as an antifreeze (although it's a longer gecko code than the other two combined)
NTSC-U
08895AC4 000000FF
20070004 00000000
PAL
0889A194 000000FF
20070004 00000000
NTSC-J
088992F4 000000FF
20070004 00000000
NTSC-K
088885CC 000000FF
20070004 00000000
Code created by: Seeky
Code credits: Star (showing the exploit could be used for RCE), CLF78 (shortening the code to an 08)
This code will increase the space allocated for each of the split RACE packet buffers to the maximum size that could be memcpyed into them (0xff, since the length values in the packet header are 1 byte each), preventing the buffer overflow that was used in Star's RCE code. This code was actually made a few weeks before the release of taht code, as an attempt for an antifreeze originally, and turned out to be fixing the same exploit that was being used for his RCE.
WARNING: this code only fixes one specific overflow, it does not protect against the USER overflow and wouldn't protect against any other exploits if they were to be found. For protection against the current known exploits, you should pair this code with USER Overflow Fix or use RACE Packet Validation instead, which protects against both and can also act as an antifreeze (although it's a longer gecko code than the other two combined)
NTSC-U
08895AC4 000000FF
20070004 00000000
PAL
0889A194 000000FF
20070004 00000000
NTSC-J
088992F4 000000FF
20070004 00000000
NTSC-K
088885CC 000000FF
20070004 00000000
Code created by: Seeky
Code credits: Star (showing the exploit could be used for RCE), CLF78 (shortening the code to an 08)