HC's Capture the Flag website
CTF Contests
25C3-CTF
25C3-CTF final results
Advisory #107
From team KEVA
New advisory by : slashd
Affected service(s): cashflag
Severity [lmh] : low
===== Problem =====
Spam in cashflag service
===== Impact =====
When other teams execute
nc -l -p 12345
he is avalebel to free connect
we do
nc team_ip 12345
Send spam, War and World Toltoy.
==== Fix =====
use nc only with grep
nc -l -p 12345 | grep FLAG
Rating
[0] That fix doesn't work, because it doesn't distinguish between real and faked flags