It is currently Wed Nov 21, 2018 6:37 am

All times are UTC




Forum locked This topic is locked, you cannot edit posts or make further replies.  [ 2 posts ] 
Author Message
PostPosted: Fri Apr 15, 2011 8:14 pm 
Offline

Joined: Thu Aug 03, 2006 10:55 pm
Posts: 625
There is a remote code execution flaw in the released version of the python scripts. An attacker could execute arbitrary python code on any client computer connected to a CWE-compatible server. Cyan's MOULagain server has already been updated with a fix.

The affected files are:
  • ercaControlRoom.py
  • ercaPelletRoom.py
  • grsnTrnCtrDoors.py
  • grtzAccessDoors.py
  • jlakField.py
  • nglnUrwinBrain.py
  • nglnTreeMonkey.py
  • payiUrwinBrain.py
  • xKI.py
  • xStandardDoor.py
.

The fix also includes a new file: jlakConstants.py

Patches for the affected files are available from the Guild of Writers moul-scripts repository at http://github.com/H-uru/moul-scripts. A new scripts package which contains the fix is available from https://github.com/H-uru/moul-scripts/zipball/e049025fb8b7cdb5487d20d8d3969e561a23a4be

_________________
MOULagain KI #: 66990

When I was your age, we rocket-jumped up hill both ways in boiling lava.


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Fri Apr 15, 2011 9:53 pm 
Offline
Obduction Backer

Joined: Wed Jan 19, 2011 12:19 am
Posts: 49
Thanks for fixing this, guys. :) It's so great to see progress being made on this great game.

_________________
Many Urus have come and gone, yet the Cavern remains... and so do we.
KI #: 01951307


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Forum locked This topic is locked, you cannot edit posts or make further replies.  [ 2 posts ] 

All times are UTC


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to: