Originally posted by orrgroup:

Originally posted by serious:

Even if he did, you think you are qualified to determine what is and is not valid proof?

I know for a fact that there are vulnerabilities in the BOIII client. The vulnerabilities only affect *server hosters*. Regular players are not at risk whatsoever.

EZ client, as scummy as they are, did fix the old security concerns by using the newest version of the security dll, meaning all that is left is much more complicated exploits that very few people understand/can leverage.

The worst thing that clients will deal with is remote crashes, which is the same issue that regular BO3 has. Momo never implemented all the fixes I sent him, which means tons of the simple exploits that attackers used still work.

hm. so playing the game as someone who just joins a server on boiii is safe except for crashes? could you clarify the simple things? either way, thx for the info, serious

The issue is semantics. People define "safe" as different things.

For the BOIII CLIENT (Official and EZ only):

Can people install malware or run remote code on your machine: No

Can people obtain your IP address remotely: Yes

Can people crash you remotely: Yes


For the BOIII SERVER HOSTERS (Official and EZ only):

Can people install malware or run remote code on your machine: Yes

Can people obtain your IP address remotely: Obviously, you are a server

Can people crash you remotely: Yes

For other versions of the BOIII servers (outside of official or EZ), it is exceptionally easy to run remote code. EZ and official BOIII servers are slightly harder to run code on, but are still *relatively easy to run code on*.

The community dedicated servers downloaded through steam tools are 100% unpatched to the old RCE method and attackers can easily install malware through them.