Need for Speed 2 Remote Client Buffer Overflow Exploit

http://www.k-otik.com/exploits/01.23.nfshp2cbof.c.php

yea i saw this posted just this min,

doesnt compile under cygwin;

nfs.c:194: error: redefinition of `std_err'
nfs.c:176: error: `std_err' previously defined here
nfs.c:252:2: warning: no newline at end of file

hmm compiling didnt work :/
could anyone post a compiled exploit? would be gr8!

which port do u have to scan for? is it 61220 or 8511? 8511 right?

greetz

well i have to ask what do u want to use this for? the chance to find a computer thats playing need for speed 2 is very low and anyway the game is old so the chance is even lower...
just for fun id say

doesnt compile under Msc++6

Compiling...
nfs2hp.c
\nfs2hp.c(133) : error C2065: 'wsadata' : undeclared identifier
\nfs2hp.c(133) : warning C4133: 'function' : incompatible types - from 'int *__w64 ' to 'LPWSADATA'
\nfs2hp.c(135) : error C2275: 'WSADATA' : illegal use of this type as an expression
D:\Program Files\Microsoft Visual Studio .NET 2003\Vc7\PlatformSDK\Include\WinSock.h(347) : see declaration of 'WSADATA'
\nfs2hp.c(135) : error C2146: syntax error : missing ';' before identifier 'wsadata'
\nfs2hp.c(135) : error C2144: syntax error : '<Unknown>' should be preceded by '<Unknown>'
\nfs2hp.c(135) : error C2144: syntax error : '<Unknown>' should be preceded by '<Unknown>'
\nfs2hp.c(135) : error C2143: syntax error : missing ';' before 'identifier'
\nfs2hp.c(136) : warning C4244: '=' : conversion from 'SOCKET' to 'int', possible loss of data


something i noticed that was one of the files that it had set for include (i think it was winerr.h, either way its the one thats included with "" instead of <>) is accually at the bottom of the exploit, so if you don't comment out that include line you get an error saying some things are defined more then once. if anyone has any luck with VC++.net let me know, i'm have no luck with this one

update for anyone having trouble compiling this, i still haven't found a way to compile it yet, but if you go to the website in the exploit source (http://aluigi.altervista.org/) and then click the advisories link on the left of the page, and go down to the very bottom of the list that brings up, you should see this exploit, and one of the choices is POC, chose this and you'll get a zip with the source as well as a compiled version.

Doesn't need for speed underground use the same port being 242? If so this could be worth a closer look as this is a very popular game

Heh...yeh thats nice, we'll see all these script kiddies exploiting each other whenever one beats the other in a race.

the exploit is strange....

look this is what i get with the compiled exploit:

how can it help?
no one playing it..

Need for Speed Hot pursuit 2 <= 242 client's buffer overflow 0.1
by Luigi Auriemma
e-mail: aluigi@altervista.org
web: http://aluigi.altervista.org


Usage: C:\Documents and Settings\Chacal\Escritorio\Debug\NeedForSpeedRemoteClientOverflow.exe <version>

Version:
240 = this is the default (1.0) and more diffused version
242 = the latest patched version, rarely used by players

------------------------------------------------------------------------------------------------

you need to define the remote address hear
"0000" // return address

did anyone succeed with that exploit by now?

i am agree with you Nexcess

maybe it should of been the need for speed underground game instead ,

think one minute about the exploit. Who runs a game on a 100 MBIT for example no one. And even if. If somone plays Need for Speed on his fast box then he would check his server after a bit of time cause he have no upload. So forget about this exploit.