Instantly crash a server using /mail

Question

Instantly crash a server using /mail

spookymgmt opened this issue 2 years ago · 2 comments

spookymgmt commented 2 years ago

Type of bug

Performance issue or memory leak, Exploit

`/ess dump all` output

413 request entitty too large

Error log (if applicable)

No response

Bug description

[22:04:20] [Server thread/INFO]: MinionMarket issued server command: /mail send bamongus ﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽
[22:04:20] [Server thread/INFO]: Bamongus issued server command: /mail send ordinaryavocado ﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽﷽
[22:04:20] [Server thread/INFO]: OrdinaryAvocado issued server command: /mail read 1
[22:04:20] [Server thread/INFO]: MinionMarket issued server command: /mail read 1

spamming this quickly will instantly crash any server/

Steps to reproduce

above

Expected behaviour

dont allow people to send unicode or Arabic text in mail.

Actual behaviour

everything doesnt explode

JRoy · Answer 1 · 2023-07-23T13:22:10.000Z

There's no real way to prevent this, would recommend just banning people who do this. Just blocking arabic text would prevent people from sending legit messages in arabic.

JasonHorkles · Answer 2 · 2023-07-23T17:27:14.000Z

Restricting mail sending to staff only is also a viable solution

Share to