Item Search
     
BG-Wiki Search
+ Reply to Thread
Page 1 of 11 1 2 3 ... LastLast
Results 1 to 20 of 211
  1. #1

    FFXI: JavaScript exploit on the loose(Repairs inside)

    admin edit: This was related to somepage and their FFXI web page a little while ago, somepage has since been fixed so we have opened the word filter. Since SE seems to want to do jack and shit about this we offer this advice. Browse safely with firefox and the noscript plugin, keep your virus scanner up to date and dont download random crap you might find. This topic will stay around until further notice.

    -------

    This was posted in the other hacked players thread, but a separate thread needs to be made so it can be brought to the attention of the masses.
    Do not visit somepage.com, or you risk being infected.

    http://euphidime.com/img/iframe.png

    A malicious iframe (inline frame) has been placed on the front page of somepage.com. It is not known whether it was placed there by the administrators, or an unknown third party that gained access to the website. The iframe loads a page containing a harmful JavaScript exploit that attempts to install a Trojan on the victim's computer. It is unknown what vulnerability the page exploits, but current speculation points here. It is strongly advised that you do not go to somepage.com until the issues is resolved. If you believe you have been infected, removal instructions are on the front page of the other thread.

  2. #2
    Ranger
    9900klub

    Join Date
    Apr 2005
    Posts
    11,474
    BG Level
    9
    FFXIV Character
    Sonomaa Kihten
    FFXIV Server
    Gilgamesh
    FFXI Server
    Bahamut
    WoW Realm
    Durotan
    Blog Entries
    12

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    Admin note: Some page is now a word filter for the ]]DO NOT USE SOMEPAGE[[ thing you might be seeing, this is just a note and something that will hopefully break urls and such.

    Thanks to all of the community who found and was able to get this shit handled smoothly, and many apologies to those who lost their characters and accounts, perhaps SE will take things a little more seriously when dealing with this.

  3. #3

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    Great job guys. Thanks for the heads up.

  4. #4
    Cerberus
    Join Date
    Mar 2005
    Posts
    395
    BG Level
    4
    FFXI Server
    Leviathan

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    yeah gm's are ignorant: http://windower.faservers.net/gmlum.txt

  5. #5

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    I'd like someone to remind them that this is a PC game, and something they should have been prepared for and had a much better way of dealing with.

    Who's to say we didn't get this shit from our E-Mail? I mean, shit, we can't check our E-Mail now cause it's on the same PC? They specifically made this game for PC, first, if I recall, which is open to all sorts of things, regardless of it being a 'third-party website.'

  6. #6
    23 years old
    Rating: total douchebag

    Join Date
    May 2005
    Posts
    8,407
    BG Level
    8

    Re: ]]DO NOT USE ]]DO NOT USE SOMEPAGE[[[[: JavaScript exploit o

    Quote Originally Posted by Aikar
    Totally didn't see that reaction coming from them, nope. Brb finding my surprised face.

  7. #7
    Ridill
    Join Date
    Oct 2005
    Posts
    9,146
    BG Level
    8
    FFXI Server
    Quetzalcoatl

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    does this virus automatically download to the computer without a prompt? or is it one of those "click here" type things?

    i checked the site earlier so i'm a bit concerned on how it works

  8. #8
    Sea Torques
    Join Date
    Jun 2005
    Posts
    662
    BG Level
    5
    FFXIV Character
    Tearshang Pourlamour
    FFXIV Server
    Excalibur
    FFXI Server
    Bahamut

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    From what I understood from Sonomaa it's an autodownload function.

  9. #9
    Sea Torques
    Join Date
    Jun 2005
    Posts
    662
    BG Level
    5
    FFXIV Character
    Tearshang Pourlamour
    FFXIV Server
    Excalibur
    FFXI Server
    Bahamut

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    Just finished my talk with a GM.

    "Thank you, Tearshang. GM support cannot get directly involved as our jurisdiction is in-game, but I will notify the proper parties. I will pass this information down to the Special Task Force so that they can do their own investigation."

  10. #10
    Puppetmaster
    Join Date
    Feb 2007
    Posts
    72
    BG Level
    2

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    I deobfuscated the javascript, it is the realplayer buffer overflow from october this year. You're safe from it if you viewed somepage with firefox or opera, as the exploit only works on the activeX plugin, which those browsers can't use.
    You're also safe of course if you don't have realplayer installed at all.

  11. #11
    Very Sexy Nerd
    Join Date
    Oct 2005
    Posts
    9,055
    BG Level
    8
    FFXI Server
    Carbuncle

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    Is this the same 4 files that are listed on the other topic, or different ones?

  12. #12

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    if this started in october, would this explain why somepage is not being updated?

  13. #13
    Final Fantasy XI Music Devotee

    Join Date
    Dec 2005
    Posts
    725
    BG Level
    5
    FFXIV Character
    Vianne Nys
    FFXIV Server
    Excalibur
    FFXI Server
    Quetzalcoatl

    Re: ]]DO NOT USE ]]DO NOT USE SOMEPAGE[[[[: JavaScript exploit o

    Quote Originally Posted by Remy0
    if this started in october, would this explain why ]]DO NOT USE SOMEPAGE[[ is not being updated?
    Given that the last update on the site was about Pankration... I guess that some people stopped caring of it.

    PS: Recursivity in word filter is fun!

  14. #14
    Aramyth
    Guest

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    Thanks for sharing this.

  15. #15
    Sea Torques
    Join Date
    Oct 2007
    Posts
    632
    BG Level
    5
    FFXI Server
    Bismarck

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    I think that I saw this in the bible.


    And the MAC shall inheirit the Earth.

  16. #16
    Smells like Onions
    Join Date
    Aug 2007
    Posts
    6
    BG Level
    0
    FFXI Server
    Odin

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    Thanks for the sharing this and notifying us ^^

  17. #17
    souleman
    Guest

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    I deobfuscated the javascript
    Is that the high-tech way of saying you looked at the code and saw:
    Code:
    |RealVersion|
    ...
    |VulObject|userLanguage|04|RealExploit|
    ...
    |ActiveXObject|
    BTW, if you keep your software updated, it helps to avoid threats like this.
    http://service.real.com/realplayer/secu ... player/en/
    Real patched this back in October.

  18. #18
    Sea Torques
    Join Date
    Nov 2005
    Posts
    641
    BG Level
    5
    FFXI Server
    Asura

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    So where has Cuer been anyways. Sept 6 is a long time ago. ;P

  19. #19

    Re: ]]DO NOT USE SOMEPAGE[[: JavaScript exploit on the loose

    I'm not too computer-savvy, but I use Some Page often and frequently... is there any way I can check to see if I've been infected? I don't know if I have Active X.. I usually use IE Browser at work and Firefox at home. EEp. ;3

  20. #20
    E. Body
    Join Date
    Jun 2005
    Posts
    2,226
    BG Level
    7
    FFXI Server
    Caitsith

    Re: ]]DO NOT USE ]]DO NOT USE SOMEPAGE[[[[: JavaScript exploit o

    Quote Originally Posted by Nyanoh
    I'm not too computer-savvy, but I use Some Page often and frequently... is there any way I can check to see if I've been infected? I don't know if I have Active X.. I usually use IE Browser at work and Firefox at home. EEp. ;3
    viewtopic.php?f=2&t=27226

    Was linked in the OP here too, but since ya missed it, XD.

+ Reply to Thread
Page 1 of 11 1 2 3 ... LastLast

Similar Threads

  1. Installing FFXI on the 360
    By subzero1313 in forum FFXI: Everything
    Replies: 6
    Last Post: 2009-05-11, 07:43
  2. FFXI addiction, good on the wallet?
    By Faithe in forum FFXI: Everything
    Replies: 34
    Last Post: 2008-11-29, 12:09
  3. Is there an exploit on ffxi-atlas?
    By Brike in forum FFXI: Everything
    Replies: 64
    Last Post: 2008-03-13, 08:17
  4. FFXI on the Ipod
    By Excalin Garisk in forum FFXI: Everything
    Replies: 54
    Last Post: 2006-08-11, 03:03