Hi guys, im desperated, im coming here to see if someone can help me.
I have basic knowledge of Linux.... if you tell me how to do it, ill find the way.
What's going on:
Battlefield 2 server being attacked by packets that creates infinite loop, then when a player disconnects, server crash.
The packets seems to be always the same.....
Attacker Script:
http://aluigi.altervista.org/poc/bf2loop.zip
Script in action:
PHP Code:
- you must check the server manually to know if it's vulnerable or not
- start connection:
..
received: 02 7
..
received: 07 12
..
received: 0f 25
....
received: 03 6
- you must check the server manually to know if it's vulnerable or not
- start connection:
..
received: 02 7
..
received: 07 12
..
received: 0f 25
....
received: 03 6
- you must check the server manually to know if it's vulnerable or not
- start connection:
I need to find a way to block these 4 packets (i think theyre 4 for what i tested) with IP TABLES.
Please! Please help me!
Thanks a lot!
EDIT: There seem to be other different replies, maybe 1 different but no more.... maybe you can find something useful in the script.