Friday - July 21st - 2017
» Menu

» Login

» OB/Site News

Omerta News Integration
Comments: 22 - Views: 5248 - Votes: 0
War rating
Comments: 6 - Views: 7656 - Votes: 1
Reporters Wanted!
Comments: 2 - Views: 12168 - Votes: 3
» Articles
Date Comments Rating

General Comments & Major Rumors
Comments: 41,412 - Views: 2,697,252 - Votes: 61
27-06 When Saints become angels
Comments: 21 - Views: 1,765 - Votes: 0
21-06 Bullets lost!
Comments: 11 - Views: 1,056 - Votes: 0
15-06 Let's pray for the best!
Comments: 22 - Views: 1,914 - Votes: 0
13-06 Some Riot
Comments: 16 - Views: 2,057 - Votes: 1
09-06 TGIF
Comments: 35 - Views: 3,549 - Votes: 1
05-06 Discordia's Fall
Comments: 5 - Views: 728 - Votes: 1
03-06 Hammer Struck, Godhand Rises!
Comments: 5 - Views: 620 - Votes: 1
15-05 The Final Chapter!! - RESET Friday! (26/05) updated
Comments: 20 - Views: 1,462 - Votes: 1
05-05 Crossfire Favour
Comments: 27 - Views: 1,854 - Votes: 1
go back
go forward
» Barafranca News

No news found. Reset in progress?
» Mafia News

» Online last 15 minutes

Guests: 169
Total members: 2814
Online: 0 (0%)
Members:
18-01 Doping in Omerta?!
Author: sbanks
Last updated: 1644d 6h 8m 53s ago by sbanks
Comments: 264
Views: 17,838
Votes: 0 (0 average)
Version: 3.52
Involved families: Lucchese, Righelli
article
Bugs Bugs Bugs?!

We just saw a few akills, which downed Righelli & Lucchese. So OBN started investigating what happened, speaking with some people to find out exactly what happpened.

A Top from a an unnamed family told OBN that he abused several bugs in Omerta. He only told Beyond about 2 in specific, but there are way and way more he told us. But these are the most used.




1. Bloodbank bug → When you have for example 99% health and you would go to the bloodbank and add the following DOM value in the input field "100e-2" you would end up with 199% health!

Here we have to ask, how long is this going on? Are there more families who knew about this? And what if they had all their members at 199% health, they just wouldn't be able to be brought down. I think of yesterdays war where tops of the attacking families state that Righelli highranks for example just didn't die. Same goes for countering families that said it was impossible to kill Messina accounts, while Messina was an agressor in the war, thus needing to have attack BG setups.

We have no proof here, but these are our first thoughts of course. We are not pointing any fingers!

2. Hitlist bug → So you want to hitlist a person but you don't have the required money? Another simple solution! If you would fill out "100e+6" in the input field you would hitlist a person for $100 million omerta dollars and it would only cost you $100 omerta dollars. Sounds like a fair deal to me!

We saw a lot of Messina people who got hitlisted a few days ago, and i think opponents of Messina may have used this bug to hitlist them.




Update: Some reporters saw, especially this version, rather weird bumps of money ingame. It was suddenly way higher than it ever was. An abuser explained to us how they did this.

They looked for a target, when they found him, they put this person on the hitlist and shot inmediatly. → free money!

Update²: If this is possible in the input fields at the Hitlist and the Bloodbank. Is it also possible to fill these codes in at all other input fields? If this is true it would mean that every aspect with an input field of the game could be abused by this bug. SH Time, Bullets used to shoot, Gambling, EVERYTHING.


We recieve images and logs from everyone that the bugs are also used to get extra RP and more bullets from the local factory then allowed.

A anonymous person showed me he bought 1337 units of beer as swindler and gained about 30% rank progess!

Another showed an image where he bought 10.000 bullets from the local factory. → http://i46.tinypic.com/2d7wqix.png




Should we start doubting at omerta and the "winners" of omerta the last few versions?




Lance Armstrong came clean yesterday, he told Oprah he used forbidden substitutes to perfom better and win the Tour de France. Did certain families also used these "methodes/substitutes" to win a version? or came out as winner in certain wars?
statements
/q sbanks | #beyond.info
statistics
War started on: 14:49:02 18-01-2013 War ended on: 15:01:00 18-01-2013
Bullet difference: -1,481,519 War duration: 11m
Money difference: -$1,065,804,084 Players died: 19




deaths
Dead Families:
[Lucchese] Family down on 14:56 18-01
[Righelli] Family down on 14:51 18-01
Deaths per family:
Sw As LC Ch Br CD GF Points
Lucchese | swin: 3 | assa: 0 | lc: 0 | chief: 0 | brug: 1 | cd: 0 | gf: 0 | points: 19
Righelli | swin: 0 | assa: 0 | lc: 0 | chief: 0 | brug: 0 | cd: 0 | gf: 1 | points: 34
Total | swin: 3 | assa: 0 | lc: 0 | chief: 0 | brug: 1 | cd: 0 | gf: 1 | points: 53
kenpachi480 (18:26:07 - 23-01)
Link Quote
i was already retired but next version i am not even gonna care keeping my nickname

we been saying this for serveral versions always without proof but always founded arguments

now the ape comes out of its sleeve. well little to late

an yes hereby every winner since 3.0 for sure may turn in their title
rbaiao Portugal (16:33:30 - 23-01)
Link Quote
H`HMD|Zzz at 03:39:52 on 20/01:
rbaiao at 15:07:19 on 19/01:
im sure conflict is behind of all this bugs :p

rbaiao, just because you don't play doesn't mean you should reveal all of our secrets! that's just low man!


xd
Ugly (20:22:28 - 21-01)
Link Quote
rbaiao at 15:07:19 on 19/01:
im sure conflict is behind of all this bugs :p

bugflick.
Anonymous (18:53:54 - 21-01)
Link Quote
Rix at 17:57:55 on 21/01:
kredu at 17:10:46 on 21/01:
How is it possible they don't even cast variables to (int)?
Yup, it's a really weird bug. "100+e6" or whatever is a perfectly fine number for PHP, so that's at least how it got through some of the checks. I guess they did use intval in their queries because that does (weirdly enough, but PHP is so insecure that it doesn't even surprise me) return 100 instead of 100 million, so in that way it also makes sense that only $100 is withdrawn from the user's account. What I don't get, though, is that all the same the maximum amount of an unsigned 32-bits integer is added as new money in the economy and used for the hitlist. Pretty irregular.

thats the kind of msg you can never see from a so-called omerta crew xD

I cant even imagine that
Bramble using words like PHP, integer, 100+e6 in a topic.. :'')
just cant even picture it in my mind xD


and just checked back that topic again;

"Please, do not contact us as we’re still very busy investigating a few things"

I'd love to see her explain(write a story) about what stuff they'd been invastigating :')
and what could they find and fix :')

"and you contacting us will only slow things down."

:')
slow down the things which already been stopped long ago?
how's that even possible? xD

Rix Netherlands (17:57:55 - 21-01)
Link Quote
kredu at 17:10:46 on 21/01:
How is it possible they don't even cast variables to (int)?
Yup, it's a really weird bug. "100+e6" or whatever is a perfectly fine number for PHP, so that's at least how it got through some of the checks. I guess they did use intval in their queries because that does (weirdly enough, but PHP is so insecure that it doesn't even surprise me) return 100 instead of 100 million, so in that way it also makes sense that only $100 is withdrawn from the user's account. What I don't get, though, is that all the same the maximum amount of an unsigned 32-bits integer is added as new money in the economy and used for the hitlist. Pretty irregular.
kredu Portugal (17:10:46 - 21-01)
Link Quote
How is it possible they don't even cast variables to (int)?
zeveroare Belgium (08:10:38 - 21-01)
Link Quote
Anonymous at 11:55:55 on 19/01:
wL at 11:45:29 on 19/01:
Anonymous at 11:29:55 on 19/01:
wL at 10:53:10 on 19/01:
Anonymous at 08:48:39 on 19/01:
all non-turkic fams who use those bugs. and admins have to start punish , messina&gravano which are still abusing...

cool story brotha

awww someone think he isn't a turkish well we are all know about you little moron with the israel flag xD you are a turkish and not proud of? traitor!

just be a lil bit brave and stop posting anonymously so you can choose a flag also little smurf.

you think you choosed a flag? And everythink is done you are excellent?? no sir you ve no honor

Yes he "choosed" a flag (cool Engrish bro).
In this game, what Turk would be proud being Turk. He can be something better he can be family.

Also, I bet Vaffanculo did it. Nice try rbaiao, stealing our thunder :/
Smurfje Netherlands (10:23:30 - 20-01)
Link Quote
wL at 11:45:29 on 19/01:
Anonymous at 11:29:55 on 19/01:
wL at 10:53:10 on 19/01:
Anonymous at 08:48:39 on 19/01:
all non-turkic fams who use those bugs. and admins have to start punish , messina&gravano which are still abusing...

cool story brotha

awww someone think he isn't a turkish well we are all know about you little moron with the israel flag xD you are a turkish and not proud of? traitor!

just be a lil bit brave and stop posting anonymously so you can choose a flag also little smurf.

WHAT ABOUT SMURFS PUNK? ;D
H`HMD|Zzz (03:39:52 - 20-01)
Link Quote
rbaiao at 15:07:19 on 19/01:
im sure conflict is behind of all this bugs :p

rbaiao, just because you don't play doesn't mean you should reveal all of our secrets! that's just low man!
Anonymous (21:25:12 - 19-01)
Link Quote
Admins should look Messina high ranks markets , they will see villa every city :)
hugo Turkey (17:49:24 - 19-01)
Link Quote
rbaiao at 15:07:19 on 19/01:
im sure conflict is behind of all this bugs :p
i thought u r behind lunatiko :o
:')
Anonymous (16:38:25 - 19-01)
Link Quote
Profestum at 03:43:59 on 19/01:
cry me a river....

got some money left for me p? 10 bucks for 100 mil was it?
Anonymous (16:06:05 - 19-01)
Link Quote
rbaiao at 15:07:19 on 19/01:
im sure conflict is behind of all this bugs :p

xd
Anonymous (15:19:07 - 19-01)
Link Quote
i think its not cheaters problem.if u knew this bugs u would use them ;) Dont u ?

Thats all Admins Problem !
They had to take measures..But they couldnt.
Because they just want $_$
rbaiao Portugal (15:07:19 - 19-01)
Link Quote
im sure conflict is behind of all this bugs :p
Anonymous (14:48:43 - 19-01)
Link Quote
Amproof at 07:47:56 on 19/01:
Anonymous at 00:36:30 on 19/01:
Best thing about this to be honest is Bramblerose writing.

"It’s bitterly cold outside, snow’s been fallen down for days."

"fallen"



Ahahahahahhahahahahah, really ?

Bramblerose more work on the game and less fail attempts at writing.
seriously is that all you can say?

:')

No, that´s all i WANT to say.
Pritalex Netherlands (13:36:12 - 19-01)
Link Quote
Anonymous at 13:31:31 on 19/01:
DOES THE BUG STILL WORK ?
User Family Amount Options
Cas None $8,599,935,590 View Details
Aaaaaaaax None $4,294,967,295 View Details
Anonymous (13:31:31 - 19-01)
Link Quote
DOES THE BUG STILL WORK ?
Konein Netherlands (13:13:15 - 19-01)
Link Quote
Athenamoia at 21:47:38 on 18/01:
Mikee at 21:39:17 on 18/01:
Mikee at 21:38:54 on 18/01:
i've got a gingerbug
my hair turned orange
true story

pubic hair also ? :<

Athenamoia, your fetish for ginger pubic hair is so gross :r
Saros`away Netherlands (12:50:54 - 19-01)
Link Quote
wL at 12:33:47 on 19/01:
scratzin at 12:30:41 on 19/01:
wL at 12:30:01 on 19/01:
scratzin at 12:25:59 on 19/01:
wL = jew. Fact.

Oh, and just because some input fields are susceptible to certain forms of input manipulation, doesnt mean all input fields are.

Remember the spotraid bulletbug? Enter 1.0000. bullets and get 10k bullets back? That weakness only existed in the spotraid input field, and nowhere else. Trust me I've tried.

ch34t3r

Says mr 1 mil bullets

it was 4.5m in total :|

Both of you should have been IP banned long ago ;s