• Log InLog In
  • Register
Liquid`
Team Liquid Liquipedia
EDT 18:52
CET 23:52
KST 07:52
  • Home
  • Forum
  • Calendar
  • Streams
  • Liquipedia
  • Features
  • Store
  • EPT
  • TL+
  • StarCraft 2
  • Brood War
  • Smash
  • Heroes
  • Counter-Strike
  • Overwatch
  • Liquibet
  • Fantasy StarCraft
  • TLPD
  • StarCraft 2
  • Brood War
  • Blogs
Forum Sidebar
Events/Features
News
Featured News
[ASL20] Finals Preview: Arrival13TL.net Map Contest #21: Voting10[ASL20] Ro4 Preview: Descent11Team TLMC #5: Winners Announced!3[ASL20] Ro8 Preview Pt2: Holding On9
Community News
2025 RSL Offline Finals Dates + Ticket Sales!9BSL21 Open Qualifiers Week & CONFIRM PARTICIPATION1Crank Gathers Season 2: SC II Pro Teams9Merivale 8 Open - LAN - Stellar Fest3Chinese SC2 server to reopen; live all-star event in Hangzhou23
StarCraft 2
General
RotterdaM "Serral is the GOAT, and it's not close" The New Patch Killed Mech! Could we add "Avoid Matchup" Feature for rankgame Chinese SC2 server to reopen; live all-star event in Hangzhou Weekly Cups (Oct 13-19): Clem Goes for Four
Tourneys
Crank Gathers Season 2: SC II Pro Teams 2025 RSL Offline Finals Dates + Ticket Sales! Merivale 8 Open - LAN - Stellar Fest $5,000+ WardiTV 2025 Championship $3,500 WardiTV Korean Royale S4
Strategy
Custom Maps
Map Editor closed ?
External Content
Mutation # 497 Battle Haredened Mutation # 496 Endless Infection Mutation # 495 Rest In Peace Mutation # 494 Unstable Environment
Brood War
General
[ASL20] Ask the mapmakers — Drop your questions BSL Team A vs Koreans - Sat-Sun 16:00 CET [ASL20] Finals Preview: Arrival BW General Discussion BSL Season 21
Tourneys
[ASL20] Grand Finals The Casual Games of the Week Thread BSL21 Open Qualifiers Week & CONFIRM PARTICIPATION ASL final tickets help
Strategy
How to stay on top of macro? PvZ map balance Soma's 9 hatch build from ASL Game 2 Current Meta
Other Games
General Games
Stormgate/Frost Giant Megathread General RTS Discussion Thread Path of Exile Nintendo Switch Thread Dawn of War IV
Dota 2
Official 'what is Dota anymore' discussion LiquidDota to reintegrate into TL.net
League of Legends
Heroes of the Storm
Simple Questions, Simple Answers Heroes of the Storm 2.0
Hearthstone
Deck construction bug Heroes of StarCraft mini-set
TL Mafia
TL Mafia Community Thread SPIRED by.ASL Mafia {211640}
Community
General
US Politics Mega-thread Things Aren’t Peaceful in Palestine Russo-Ukrainian War Thread YouTube Thread The Chess Thread
Fan Clubs
White-Ra Fan Club The herO Fan Club!
Media & Entertainment
Movie Discussion! Anime Discussion Thread [Manga] One Piece Korean Music Discussion Series you have seen recently...
Sports
2024 - 2026 Football Thread Formula 1 Discussion MLB/Baseball 2023 TeamLiquid Health and Fitness Initiative For 2023 NBA General Discussion
World Cup 2022
Tech Support
SC2 Client Relocalization [Change SC2 Language] Linksys AE2500 USB WIFI keeps disconnecting Computer Build, Upgrade & Buying Resource Thread
TL Community
The Automated Ban List Recent Gifted Posts
Blogs
LMAO (controversial!!)
Peanutsc
The Benefits Of Limited Comm…
TrAiDoS
Our Last Hope in th…
KrillinFromwales
Certified Crazy
Hildegard
Customize Sidebar...

Website Feedback

Closed Threads



Active: 1360 users

New WC3 security exploit(for those who still play)

Forum Index > General Games
Post a Reply
Goldfish
Profile Blog Joined August 2010
2230 Posts
Last Edited: 2011-01-06 09:00:33
January 06 2011 08:50 GMT
#1
Not sure where to post this actually, but since this is actually not that "new" of an exploit (Found since October 2010) and Blizzard still hasn't patched it or even mentioned it (as opposed as to the previous one which was mentioned and patched fast), I wanted to post it here as a warning.

From hiveworkshop which was from thehelper.

Post describing possibilities.

The exploit allows any malicious map maker (or map hoster) to insert code which downloads a file anywhere on your computer the next time you restart your computer (after loading the malicious WC3 map that is).

Possible usages includes downloading files to your startup folder or overwriting existing popular program files (skype, steam, etc) with maliciously modified versions for example.

Basically don't download or join random or odd WC3 custom maps (host your own games using maps you know are "clean" [maps that you played dozens of times without any problems]).

Fortunately the exploit hasn't been taken that much advantage of yet but I think it's still worth a mention in case you do play random WC3 games a lot and you have things you do not want to have taken over or lose (battle.net account passwords in case a keylogger gets downloaded to some location where it can be run through some program or autostart, etc).

Existing maps people have been playing for ages are probably safe and popular maps are safe too (well known authors of maps would not likely inject malicious code into their maps).

However there could be "clone maps" which have the same name and preview but with the malicious code in the map; those maps are the ones to watch out for (if you see you're DLing a map you already own, you should leave right away).
https://connect.microsoft.com/WindowsServerFeedback/feedback/details/741495/biggest-explorer-annoyance-automatic-sorting-windows-7-server-2008-r2-and-vista#details Allow Disable Auto Arrange in Windows 7+
Manit0u
Profile Blog Joined August 2004
Poland17399 Posts
January 06 2011 09:16 GMT
#2
Now that's pretty scary... Although, when I still played, whenever I saw I'm dling map I already own I always left. Not from the fear of malicious software but because I thought someone has rigged the map to favor them somehow.
Time is precious. Waste it wisely.
FindingPride
Profile Blog Joined July 2010
United States1001 Posts
January 06 2011 09:32 GMT
#3
Thanks for heads up.. this really pisses me off as it has happened before = /
Benjef
Profile Blog Joined December 2010
United Kingdom6921 Posts
January 06 2011 21:37 GMT
#4
Thanks for the heads up, luckily I just stick to the normal TDs, DoTa and Risk games.
<3 | Dota 2 | DayZ | <3
Puosu
Profile Blog Joined April 2007
6989 Posts
January 06 2011 21:45 GMT
#5
iirc. this happened to BW a few years ago but was fixed rather quickly, lets hope the same happens for WC3. It's rather sad to see something like this happen to a reputable company like Blizzard but I guess there'll always be holes to abuse.
Celadan
Profile Joined September 2010
Norway471 Posts
Last Edited: 2011-01-06 21:54:18
January 06 2011 21:53 GMT
#6
hmm i guess il stay of wc3(havent really played it so much lately tho)
спеціальна Тактика
LittLeD
Profile Joined May 2010
Sweden7973 Posts
January 06 2011 22:01 GMT
#7
Ill stick to my usual Legion/Eeve TD, Random Dota games and occasional ladder matches :D
Thanks for the headsup!
☆Grubby ☆| Tod|DeMusliM|ThorZaiN|SaSe|Moon|Mana| ☆HerO ☆
jnkw
Profile Joined November 2010
Canada347 Posts
January 06 2011 22:03 GMT
#8
Just wanted to provide a reference for those who might confuse this with the previous WC3 custom map code exploit.

Old WC3 exploit (not to be confused with the one mentioned by OP) http://forums.battle.net/thread.html?topicId=16888549346&sid=3000

The exploit mentioned by the OP is a new one.
Please log in or register to reply.
Live Events Refresh
Next event in 2h 8m
[ Submit Event ]
Live Streams
Refresh
StarCraft 2
PiGStarcraft311
Livibee 84
CosmosSc2 3
StarCraft: Brood War
Artosis 586
sSak 276
NaDa 13
Dota 2
monkeys_forever470
PGG 74
Counter-Strike
Foxcn198
kRYSTAL_41
Super Smash Bros
C9.Mang0709
AZ_Axe63
PPMD30
Heroes of the Storm
Liquid`Hasu446
Other Games
summit1g3411
Grubby3388
FrodaN597
shahzam575
Skadoodle195
ViBE156
Maynarde71
JuggernautJason13
Moletrap6
Organizations
StarCraft 2
Blizzard YouTube
StarCraft: Brood War
BSLTrovo
sctven
[ Show 17 non-featured ]
StarCraft 2
• Hupsaiya 62
• RyuSc2 14
• Kozan
• IndyKCrew
• sooper7s
• AfreecaTV YouTube
• Migwel
• intothetv
• LaughNgamezSOOP
StarCraft: Brood War
• STPLYoutube
• ZZZeroYoutube
• BSLYoutube
Dota 2
• masondota2998
League of Legends
• Doublelift4002
Other Games
• imaqtpie1142
• Scarra737
• Shiphtur178
Upcoming Events
BSL 21
2h 8m
Replay Cast
11h 8m
BASILISK vs Shopify Rebellion
Team Liquid vs Team Falcon
OSC
13h 8m
CrankTV Team League
14h 8m
Shopify Rebellion vs Team Liquid
BASILISK vs Team Falcon
Replay Cast
1d
The PondCast
1d 10h
CrankTV Team League
1d 14h
Replay Cast
2 days
WardiTV Invitational
2 days
MaNa vs Gerald
Rogue vs GuMiho
ByuN vs Spirit
herO vs Solar
CrankTV Team League
2 days
[ Show More ]
Replay Cast
3 days
BSL Team A[vengers]
3 days
Dewalt vs Shine
UltrA vs ZeLoT
BSL 21
3 days
Sparkling Tuna Cup
4 days
BSL Team A[vengers]
4 days
Cross vs Motive
Sziky vs HiyA
BSL 21
4 days
Wardi Open
5 days
Monday Night Weeklies
5 days
Liquipedia Results

Completed

ASL Season 20
WardiTV TLMC #15
Eternal Conflict S1

Ongoing

BSL 21 Points
BSL 21 Team A
C-Race Season 1
IPSL Winter 2025-26
KCM Race Survival 2025 Season 4
SOOP Univ League 2025
CranK Gathers Season 2: SC II Pro Teams
PGL Masters Bucharest 2025
Thunderpick World Champ.
CS Asia Championships 2025
ESL Pro League S22
StarSeries Fall 2025
FISSURE Playground #2
BLAST Open Fall 2025
BLAST Open Fall Qual
Esports World Cup 2025
BLAST Bounty Fall 2025

Upcoming

SC4ALL: Brood War
YSL S2
BSL Season 21
SLON Tour Season 2
BSL 21 Non-Korean Championship
RSL Offline Finals
WardiTV 2025
RSL Revival: Season 3
Stellar Fest
SC4ALL: StarCraft II
META Madness #9
eXTREMESLAND 2025
ESL Impact League Season 8
SL Budapest Major 2025
BLAST Rivals Fall 2025
IEM Chengdu 2025
TLPD

1. ByuN
2. TY
3. Dark
4. Solar
5. Stats
6. Nerchio
7. sOs
8. soO
9. INnoVation
10. Elazer
1. Rain
2. Flash
3. EffOrt
4. Last
5. Bisu
6. Soulkey
7. Mini
8. Sharp
Sidebar Settings...

Advertising | Privacy Policy | Terms Of Use | Contact Us

Original banner artwork: Jim Warren
The contents of this webpage are copyright © 2025 TLnet. All Rights Reserved.