Butterfly Exploit Fix

[Jordan95]

There is a exploit in the leaked version of butterfly that causes to give view of all the files on the server with "lol123" command. Here im going to show you how to fix that exploit.

Go to Emulator/Butterfly Emulator/HabboHotel/Misc/ChatCommandHandler.cs
Type CTRL F and find lol123. You should see this code:

Code:

        internal void dario()
        {
            if (Params[1] != "lol123")
                return;

            SuperFileSystem.Dispose();
        }

Now lets disable the exploit replace that whole code with:

Code:

        //internal void dario()
        //{
            //if (Params[1] != "lol123")
                //return;

            //SuperFileSystem.Dispose();
        //}

You can also delete the code if you want to.
Here you go! One exploit safer BUT know that there may be more exploits in butterfly.

[MentaL]

[PRIZM]

I'm glad to see some fixes to Butterfly! Thanks for this (-:

[Jordan95]

No problem :)

[Hejula]

Not really an exploit, just malicious code...

[Near]

Thanks for the tutorial.

[maritnmine]

Its funny how this function is not even activated. Deactivated many many many revisions ago due to security reasons, like if the server got leaked and people saw the exploit. Imagine how fun that would be! :O


- Martin

[Leon]

Its funny how this function is not even activated. Deactivated many many many revisions ago due to security reasons, like if the server got leaked and people saw the exploit. Imagine how fun that would be! :O


- Martin

Even if it wasn't commented out, it's really easy to find - I found it in seconds even on the obfuscated source.

[maritnmine]

Even if it wasn't commented out, it's really easy to find - I found it in seconds even on the obfuscated source.

Read what I wrote ten times: All codes pointing to that function is commented out.

- Martin

[FullmetalPride]

Moogly updated his release, this is already removed.

[Cor]

Its an un-active backdoor, it will only work when u activate it ;p

[Jordan95]

Alright.... Than i was using the out of dated source if it already got removed. Still usefull for users that dont know about the updated one i guess ^^

[Livar]

What are you talking about then?

Oh my days, I said that the source that Moogly released never "fully" worked? I don't see why you took it this far, lol.

[Makarov]

Oh my days, I said that the source that Moogly released never "fully" worked? I don't see why you took it this far, lol.

I assure you moogly released a working source.

Sent from my DROID RAZR using Tapatalk 2

[Nilenz]

So to see is this exploit or how you it calls fixed :D

[Moogly]

There is a exploit in the leaked version of butterfly that causes to give view of all the files on the server with "lol123" command. Here im going to show you how to fix that exploit.

Go to Emulator/Butterfly Emulator/HabboHotel/Misc/ChatCommandHandler.cs
Type CTRL F and find lol123. You should see this code:

Code:

        internal void dario()
        {
            if (Params[1] != "lol123")
                return;

            SuperFileSystem.Dispose();
        }

Now lets disable the exploit replace that whole code with:

Code:

        //internal void dario()
        //{
            //if (Params[1] != "lol123")
                //return;

            //SuperFileSystem.Dispose();
        //}

You can also delete the code if you want to.
Here you go! One exploit safer BUT know that there may be more exploits in butterfly.

Or if you remove it from the config file it wont work, in my last release of Butterfly I made it so anyone who says this gets banned. :)