TpAura bypass #336
Labels
(compat) Spigot-fork
(compat) ViaVersion/PS
Related to ViaVersion / ProtocolSupport compatibility
(field) moving
Related to moving checks
(field) net
Related to net checks / ProtocolLib
(priority) high priority
Major impact, should be prioritised over other tickets
(status) need debug log
(type) cheat/bypass/exploit
Bypass / cheat not covered by existing checks
Complete output of the
ncp version
command (please prefer text here)Short description of the issue and how to reproduce (is it random / always happens / side conditions ?)
When a player sends a specific packet sequence, he will be able to attack others from far away, like the so-called TpAura.
Assume the target player is T. The sequence is PacketPlayInPosition to teleport to T (packet A), PacketPlayInUseEntity to attack T, and another PacketPlayInPosition to teleport to the origin location (before packet A was sent). The same goal can be achieved by utilizing "Blink".
Have you made any (noteworthy) changes to the default configuration of NCP?
The issue can be reproduced on the default configuration.
Do you run any other special plugins that affect game mechanics next to NC+ (skills, machines, adding/changing blocks, other anti-cheating)?
No.
Provide additional information: for bypasses, vulnerabilities and reproducible issues, we request a debug log.
The packet log captured by EventsLogger:
The text was updated successfully, but these errors were encountered: