ashecitism
Member
https://www.reddit.com/r/Steam/comments/46px2w/psa_steamid_spoofing_on_every_steam_product_and/
edit: from the same guy
Short version: If you join any source engine server your PC might be compromised or your steamid stolen& few other exploits.
Not too long ago I've reported 8 exploits involving steam & source engine games. CSGO is affected too. ("2 affect all multiplayer steam games, the rest affect all source engine games" - this was taken from here)
As a proof of my report not being a lie, I've recorded this video of the hardest to properly abuse exploit. If however more proof is needed, then feel free to ask, but I'm not going to release all of this to the public.
Alright, I added a new POC demonstrating a infection on join ( no one was harmed in the making of this video ) - because I feel like I wasn't taken seriously.
Poc1: https://www.youtube.com/watch?v=K-UXrmvjV04 executeable file automatically getting saved into my startup directory ( aka it would start upon reboot )
Poc2: https://www.youtube.com/watch?v=1oy7YN_fnns&feature=youtu.be another one of the file write everywhere exploits, notice how a bat file gets saved on my desktop:
The exploits involve: Bypassing cmd restrictions, a second method for bypassing cmd restrictions and being able to easily make it persist,
spoofing the friendsid, spoofing the steamid, a second method for spoofing the steamid ( unlike the first, this would affect all steam games and also make steam tell the server that you've successfully authenticated, even though you're just spoofing ). This spoofing affects all steam products.
I've also reported a way to force servers to spoof a higher playercount by sending 2 packets,
and the most dangerous ones: writing files on every client with any contents ANY location ( enough knowledge about encoding algorithms and a lot of fiddling around to write any contents though ), writing files everywhere with any contents, ANY location with a fairly easy method.
This essentially means that all clients are at risk and could be infected with a virus by simply joining a server.
However, since my report didn't get any E-Mail reply yet, I'm hereby warning the players.
Edit: I might wanna add, 4 of these could've been prevented if valve would've fixed the issues behind previous severe exploits, instead of just the exploits themselfs. I saw one of the exploits being abused prior to my report and PSA, so some other people might have knowledge about stuff like SteamID spoofing too.
edit: from the same guy
Valves official servers should be safe, since they don't have any admin mod.