Patches and workarounds made by me: unofficial bug fixes of the bugs I found (all referred to the latest vulnerable versions of the software, older version are not supported), No-CDs and more.
My opensource Lame Patcher tool is required for applying these patches as visible in this video or in the case of the NO-CDs simply placing lpatch.exe and lpatch.dat in the folder of the game and launching lpatch.exe.
The full list of changed bytes is ever available in the included text or .lpatch files so everyone can choose if applying the patch automatically or manually.
Note that my security patches must be applied only to servers (NOT clients except where specified) and are created ONLY on request.
Please read also my No-CD philosophy
Sections:
Unofficial security bug fixes:
Generic players limiters:
- Universal game players limiter 0.1.1 (playerslimiter)
an experimental project implemented as a plugin for Proxocket (on Windows) or a shared library (on Linux) which uses a basic method for limiting the number of players from the same IP address (max 1 each 15 seconds) and for manually adapting it to almost any game which uses the UDP packets.
the package contains a text file with all the needed details, the pros and cons, its current limitations and the quick step-by-step for using it.
(note that you must export the functions as __cdecl if you want to recompile the plugin with a compiler different than gcc/mingw)
- Universal game maximum players limiter 0.1 (playerslimitermax)
exactly as above but with some additional instructions which limit the number of players to 3 (MAX_PLAYERS in the source code).
suggested to avoid the problem of not being able to quickly reconnect which could exist with the other playerslimiter project.
Battlefield series:
- Battlefield 2/2142 1.4*/1.5* bfloop fix 0.2 (Windows)
(bfloopfix) - info
SWAT 4:
- SWAT 4 1.0/1.1 NULL pointers fix 0.1
(swat4x1fix) - adv
- SWAT 4 1.0/1.1 Runtime Error fix 0.1
(swat4x2fix) - adv
Unreal engine:
- Unreal engine (old games) unrfs work-around 0.1
(unrfsfix) - adv
- Unreal engine (old games) unreaload fix 0.1
(unrealoadfix) - adv
alternative fix: add AllowDownloads=false in the INI file of the game server.
- Unreal engine (old games) unreliable fix 0.1
(unreliablefix) - adv
- Failed assertion in the Unreal engine work-arounds 0.1 / official patch from EpicGames
(unrealoadfix) - adv
- Server termination (out of memory) in Unreal engine 3 fix 0.2 / official patch from EpicGames
(ut3sticlefix) - adv
- "VoiceIndex<VOICE_MAX_CHATTERS" / NULL pointer fix for UT2004 and America's Army 0.1a (experimental work-around for Windows)
(voiceindexfix) - adv - adv
Ventrilo:
- Ventrilo <= 3.0.2 NULL pointer fix 0.1 (any version and platform)
(ventrilobotomyfix) - adv
Half-life:
- Half-Life x.1.1.1e (Windows and Linux) hlfreeze/hl-headnut/csdos/btbp fix 0.1.1
(csdosfix) - adv
the fix for the so called "Born to be pig" attack has been implemented in an experimental way only on Windows (so there are no differences on Linux between this and the old 0.1 version), anyway the previous version is still available here
- Half-Life x.1.1.1e (Windows and Linux) hlboom fix 0.1
(hlboomfix) - adv
- these patches should work with Counter-Strike 1.6 too, anyway remember ever to test your server after having patched it
Enemy Territory:
- Enemy Territory 2.55/2.60b and ET Pro 3.1.0/3.2.6 Cmd_WeaponStat_f fix 0.1 (Windows and Linux)
(etwsfix) - info
although this patch works also with ET Pro I HIGHLY suggest to use the well known combinedfixes.lua of ReyalP with this mod because it's updated for any problem specific of this game.
- remember also the Quake 3 engine fixes
Jedi Academy:
- How to fix the in-game message buffer-overflow of Jedi Academy
(jamsgfix) - adv
easy to use step by step required because the game overwrites the DLL files in the base folder, the patch is THE SAME of Call of Duty (the bug is the same too)
You need to download also the codmsgfix patch for Call of Duty you see below
Gamall Ida has written an interesting solution for all the known bugs which affect Jedi Academy, included the fake players attack: http://gamall-ida.com/f/viewtopic.php?f=3&t=356
- remember also the Quake 3 engine fixes
Call of Duty series:
- Call of Duty 4 and 5 stats DoS fix 0.1
(codstatsfix)
- Call of Duty 4 1.7 fix for the callvote buffer-overflow 0.1 (Windows)
(cod4mapboffix) - adv
- Call of Duty 4 (1.7) and Call of Duty 5 (1.7) work-around for the va() bug 0.1a (Windows)
(cod4vawo) - "Attempted to overrun string in call to va()" (works with both 1.6, 1.7 and newer versions like Call of Duty 5 / World at War)
- Call of Duty 1 / UO / 2 fix for the callvote buffer-overflow 0.1 (Windows and Linux)
(codmapboffix) - adv
- Call of Duty 2 (1.3) work-around for the va() bug 0.1
(cod2vawo) - "Attempted to overrun string in call to va()"
and patch for the old legacy 1.0 and 1.0a Linux versions
- Call of Duty <= 1.5b / UO <= 1.51b and Call of Duty 2 1.0 buffer-overrun fix 0.1 (Windows)
(codmsgfix) - adv
- remember also the Quake 3 engine fixes
Soldier of Fortune II:
- Soldier of Fortune II (1.03 Windows and 1.02a Linux) cl_guid fix 0.2.1
(sof2guidfix) - adv
- remember also the Quake 3 engine fixes
Quake 3 engine:
- Quake 3 engine Cbuf_Execute commands execution universal fix 0.1 (Windows)
(q3cbufexecfix) - info - info
- Quake 3 engine unban fix (Windows and Linux) 0.1
(q3unbanfix) - info
- Quake 3 engine universal directory traversal fix (Windows) 0.1.1
(q3dirtravfix) - adv
works with almost any Windows executable, full details are visualized when launched
- Quake 3 engine RCON half-second limit disabler (Windows and Linux) 0.1.2b
(q3rconz)
this patch disables the anti-bruteforcing check in the games that use the Quake 3 engine for avoiding the Denial of Service (admins can't use RCON) caused by the flooding of rcon packets (more info in the file)
anyway remember that disabling this limitation naturally has other negative sides effects like faster rcon brute forcing, so remember to choose a strong rcon password
- Simple and generic work-around for fixing the Quake 3 engine (q3msgboom and /ignore bugs)
(q3lamefix) - adv
- Quake 3 engine infostring crash universal fix 0.1.3 (Windows)
(q3infofix) - adv
- Quake 3 engine infostring crash universal fix 0.1.2b (Linux)
(q3infofix_linux) - adv
- other specific or legacy patches and information for the q3infoboom bug:
- jampded Windows 1.0.1.0 q3infoboom fix 0.1 (jaw101q3infofix)
- jampded Windows 1.0.0.0 q3infoboom fix 0.1 (jaw100q3infofix)
- jampded Windows 1.0.0.0 q3infoboom fix 0.1 (modified by Dani) (jaw100q3infofix_dani)
modified patch created by Dani to avoid a problem in the applying of the jaw100q3infofix and q3cbufexecfix patches on jampded 1.00.
- Soldier of Fortune II 1.00 definitive infostring crash fix 0.2 (sof2-100-fix)
- Soldier of Fortune II test-demo definitive infostring crash fix 0.1 (sof2test-fix)
- For CoD 1.1d you must manually modify the byte at offset 0x37459 from byte 03 to 01
- For CoD 1.1 try at offset 0x37419 from byte 03 to 01
- jampded Windows 1.0.1.0 q3infoboom fix 0.1 (jaw101q3infofix)
Medal of Honor:
- Medal of Honor buffer-overflow fix 0.1 (Windows)
(mohaaboffix) - adv
works with any Windows version of the games Allied Assault, Spearhead and Breakthrough
the official Linux patches are available at Icculus
- remember also the Quake 3 engine fixes
Lithtech engine:
- Lithtech (new protocol) socket unreachable fix 0.1
(lithsockfix) - adv
- old Monolith games \secure\ buffer-overflow fix 0.1
(lithsecfix) - adv
Gamespy SDK:
- Gamespy SDK gshboom bug: universal fix 0.1
(gshboomfix) - adv
Race Driver:
- Race Driver 1.20 rdboom fix 0.1
(rdboom120fix) - adv
- Race Driver demo 1.1 rdboom fix 0.1
(rdboomdemofix) - adv
- Race Driver 1.20 megafix 0.1
(rd120fix)
all-in-one patcher for the server crash and the broadcast format string and buffer-overflow
Unfortunately the second bug is almost impossible to fix so the side effect of my patch is that almost all the in-game messages are not visualized so is better to use one of the above patches for the moment
Other security fixes:
- Star Wars Battlefront II 1.1 and PS2 1.07 seven guests fix 0.1.1
(swbf2sevenfix) - adv
- Ebenezer kocrash overflow fix 0.1
(kocrashfix)
- IGI 2: Covert Strike dedicated server 1.3 format string fix 0.1 (Windows)
(igi2fsfix) - adv
- IGI 2: Covert Strike dedicated server 1.2 format string fix 0.1 (Linux)
(igi2fsfix_linux) - adv
- Chaser 1.50 (and other versions) various crash fixes 0.1
(chaserfix) - adv - adv
- Kaillera 0.86 code execution fix 0.1 (Windows, Linux and BSD)
(kailleraexfix) - adv
- Red Faction demo 1.00 megafix 0.1
(rfdemofix)
all-in-one patcher for the nickname bof, the empty udp DoS and the green team bug ONLY for the demo version of the game
- Codename Eagle 1.41 / 1.42 socket unreachable work-around 0.1
(ceaglesockfix) - adv
- Ground Control II dedicated server 1.0.0.7 crash fix 0.1
(gc2ds-1007-fix) - adv
- Ground Control II demo 0.0.8.1 crash fix 0.1
(gc2-demo0081-fix) - adv
- Need for Speed Hot Pursuit 2 242 (No-CD version) client buffer-overflow fix 0.1
(nfshp2-242fix) - adv
- Need for Speed Hot Pursuit 2 240 (No-CD version) client buffer-overflow fix 0.1
(nfshp2-240fix) - adv
- C&C Renegade FDS 1.37 crash attack fix 0.2 for Win32
(renegade137fix)
- C&C Renegade FDS 1.37 crash attack fix 0.2 for Linux
(renegade137fix-linux.txt)
- Ghost Recon 1.4.0.0 (US No-CD version) grboom fix 0.1
(grboom-fix1400) - adv
- Ghost Recon 1.0.0.2 (US No-CD version) grboom fix 0.1
(grboom-fix1002) - adv
- Server crash fix for Team Factor 1.25/1.25m Win32
(tfboomw125) - adv
Other patches:
generic step-by-step: copy lpatch.exe and lpatch.dat in the folder of the game/program and launch lpatch.exe
- 3D Ultra RC Racers Deluxe Traxxas Edition No-CD
- Rainbow Six Rogue Spear 2.05 No-CD
- EA games fesl.ea.com certificate verification remover 0.2
this modification removes the verification of the SSL certificate sent by the *.fesl.ea.com server (ports 18240,18020,18120,18081,18125,18270,18060,18210,18310 and so on) when an EA game logins on it.
- Project Eden 1.02 No-CD
- Xanadu Next 1.0.1.4 no-cd
- Ys: The Oath in Felghana 1.2.0.3 no-cd/any_language/no_crc 0.1
- Big Scale Racing 1.04H no-cd
- YsVI: The Ark of Napishtim 1.3.0.5 no-cd/any_language/no_crc 0.1
- YsVI: The Ark of Napishtim 1.2.0.2 no-cd/any_language/no_crc 0.1
- YsVI: The Ark of Napishtim 1.1.0.9 no-cd/any_language/no_crc 0.1
- Screamer 2 3dfx (newer patch) no-cd
thanx to K?roly Pil?th
- Screamer 2 3dfx no-cd
- Ys Origin 1.1.0.0 no-cd/no-crc/no-language 0.1
- Need for Speed 4: High Stakes 4.50 No-CD and Windows XP fix 0.2
No-CD and solves also the "Your hard drive has less than 1MB free space" bug and the lost config.dat after the modifying of the executable.
- Need for Speed 3: Hot pursuit No-CD and Windows XP fix 0.2
No-CD and solves also the "Your hard drive has less than 1MB free space" bug and the lost config.dat after the modifying of the executable.
- Deus Ex 1.112fm No-CD
- Sacrifice "Insufficient pagefile space" patch 0.1a
- XPDF pdftotext/pdftops/pdfimages allow copying of text (Win32) 0.1.3
this patch allows to use the Windows version of XPDF's pdftotext, pdftops, pdfimages and pdftohtml on DRM protected PDF files without modifying and recompiling the program.
- Pro Pinball: The Web 1.50P No-CD
- Pro Pinball: Fantastic Journey 1.20b No-CD
- Pro Pinball: Big Race USA 1.20b No-CD
- Pro Pinball: Big Race USA 1.18 No-CD
- Pro Pinball: Fantastic Journey 1.07 No-CD
- Pro Pinball Timeshock! 1.20b No-CD
- Pro Pinball Timeshock! 1.07 No-CD
- Carmageddon (for Windows) 1.0.0.1 No-CD
- Carmageddon (DOS) No-CD
- Leadfoot 1.00 No-CD
- AXS v3.00 enhancements 0.1a
enhancements for AXS: 96000 hz, full window, F9 descent fix, low case filenames and anti path disclosure.
- Speed Racer no-password
this patch for this old MS-DOS game allows you to use any word you want when the game asks you to inser the keyword from the manual.
- Battlefield 1942 Secret Weapons of WWII Demo v1.45 no-checksum
removes the checksum limitation in case you modify your files.
- Theme Hospital beta 5 no-cd
- Interstate '76 GE cdfix/nocd, software resolution, memory fix 0.1.1
No-CD and CD fixer at the same time (so you can play with your CD in any drive and without too), allows to set the software screen resolution up to 1600x1200, avoids the "Sorry, there is not enough memory to continue" error.
- Interstate '76 Nitro cdfix/nocd and software resolution fix
No-CD and CD fixer at the same time (so you can play with your CD in any drive and without too) and allows to set the software screen resolution up to 1600x1200.
- Soldier of Fortune 2 demo 1.02t no-CRC fix
avoids the CRC check of the demo version, you need it if you want to apply some security patches or modifications.
- XVI32 2.51 full offset 0.1
a patch which solves the max 99999999 offset bug which affects this great hex editor
- PBA Bowling 2 1.002 No-CD
- Gamespy Arcade 2.0.5.5228 multiple instances
allows you to have multiple instances of GSA at the same time (in my opinion is better to have zero instances of this program but a friend needed it).
and old 2.0.2.5222 version.
- Total Immersion Racing #3 US No-CD
- Trophy Hunter 2003 1.1 No-CD
- Waterloo: Napoleon's Last Battle 1.002 No-CD
- World Fables 1.3 No-CD
- Zanzarah 1.010 (Rev.2) german No-CD
- Star Trek Elite Force II 1.10 No-CD
- Star Wars JK II Jedi Outcast 1.04 No-CD
- Heavy Metal: FAKK2 1.02 No-CD
- Silent Hunter II 1.1 No-CD
- Destroyer Command 1.1 No-CD
- Conflict Zone 1.4 No-CD
- Cultures 2 1.05 No-CD
- Shadow Force: Razor Unit 1.2 (dx8.1) No-CD
- Shadow Force: Razor Unit 1.2 (dx8.0a) No-CD
- No Escape (latest version) No-CD
- The typing of the dead (latest version) No-CD
- Freedom Force 1.3 No-CD
- Dark Vengeance 1.2 No-CD
- Tsunami 2265 1.1 No-CD
- Project Earth (Starmageddon) 1.10 No-CD
- Hired Team 2.200 No-CD
- Warlords Battlecry II 1.03 No-CD
- MindRover 1.08 No-CD
- Emergency 2 patch 3 No-CD
- Fair Strike 1.04b No-CD
- Claw 1.2 No-CD
- Shogo 2.2 No-CD
- Tron 2.0 ANY VERSION No-CD
simple bat file that launchs "lithtech.exe -cmdfile launchcmds.txt".
- No one lives forever ANY VERSION No-CD
simple bat file that launchs "lithtech.exe -cmdfile nolfcmds.txt".
- 18 Wheels of steel - pedal to the metal 1.07 Final No-CD
- Monopoly Tycoon 1.4 No-CD (updated 26 Feb 2005)
- Warm UP! 1.1 No-CD
- Command and Conquer Renegade 1.037 No-CD
[1,85 Mb] (full EXE included)
- Global Operations 1.27.0 (aka 2.0) No-CD
[599 Kb] (full EXE included)
- Celtic Kings 1.16 No-CD
- Kiss Psycho Circus ANY VERSION No-CD
simple bat file that launchs client.exe with the needed parameters.
- Gunmetal 1.36 No-CD
- Alien vs Predator 2 ANY VERSION No-CD
simple bat file that launchs "lithtech.exe -cmdfile avp2cmds.txt".
- Airfix DogFighter 1.20 No-CD
- Deer Hunter 2004 1.1 No-CD
- Etherlords 1.07 italiano No-CD
- Etherlords 1.07 english No-CD
- Etherlords 2 1.03 No-CD
- Mat Hoffman's Pro BMX No-CD
- Serious Sam: the Second Encounter 1.50 beta No-CD
- Serious Sam: The Second Encounter 1.07 euro No-CD
[128 Kb] (full EXE included)
- Mercedes Benz Truck Racing (all versions) No-CD
- Max Payne 1.05 No-CD
[1,568 Mb Kb] (full EXE included)
- Ultim@te Race Pro 1.5 No-CD
- Mortal Kombat 4 (mk4patch3) No-CD
- Colin McRae Rally 1.5 (european) No-CD
- Colin McRae Rally 1.5 (american) No-CD
- Colin McRae Rally 1.4 (italian) No-CD
- Star Trek: Voyager Elite Force 1.20 No-CD
- Blood 2 2.1 No-CD
- Kingpin 1.2 No-CD
- Toca Touring Cars 1.1 (ita/spa) No-CD
- 4x4 Evolution 2 (1.00.145) No-CD
[1,19 Mb] (full EXE included)
- Ghost Recon (english) 1.4.0.0 No-CD
[2,06 Mb] (full EXE included)
- Medal of Honor: Allied assault 1.11 v9 (italian) No-CD
[721 Kb] (full EXE included)
- RallyMasters 3.2 EUR/JAP No-CD
you must launch the batch file called "launch only this.bat" to apply the patch.
- Gunship (latest patched version) No-CD
the patch is based on the latest available patch called gsusptch.exe.
- WWE RAW 1.1 No-CD
- Baldur's Gate II: Shados of Amn 23037 No-CD and No-startvideos
- Soldier of Fortune II GOLD 1.03 No-CD
- Villeneuve Speed Challenge (1.0???) No-CD
[450 Kb] (full EXE included)
- Medieval Total War 1.1 No-CD Loader
- Giants Citizen Kabuto 1.4 No-CD
- Dungeon Siege 1.11.1462 ITA No-CD
- Dungeon Siege 1.11.1462 No-CD and No-movies
- Actua Ice Hockey 2 (1.2 27/3/99 ???) No-CD
- Grand Prix 3 (1.13) No-CD
[632 Kb] (full EXE included)
- Thief II (1.18) No-CD
[1,10 Mb] (full EXE included)
- Turok 2 1.04 italian No-CD
- Ford Racing 1.0 No-CD
- Midtown Madness 2 (1.00.3200 called XP patch) No-CD
[889 Kb] (full EXE included)
- Driver 2.1 (2.0_sd1.35) No-CD
[513 Kb] (full EXE included)
- Driver italian version 2.1 No-CD
[527 Kb] (full EXE included)
- Majesty UPDATE#4 No-CD
[1,09 Mb] (full EXE included)
- Need for Speed: Porsche Unlimited 3.5 No-CD
[0,98 Mb] (full EXE included)
- Rage Incoming (1.0???) No-CD
- NHL 2000 (latest patched version available) No-CD
[1,32 Mb] (full EXE included)
- Death Rally 1.1 No-CD
[312 Kb] (full EXE included)
- Sheep (1.0?) No-CD
- Micrografx PhotoMagic 4.0a (italian) without extensions registration
finally this image editor will no longer change the default files extensions.
- Rune 1.07 No-CD
- Dirt Track Racing Europe 1.03 No-CD
- Roadwars 1.0 No-CD 0.1.1
- Silkolene Honda Motocross 1.0 No-CD
- Carmageddon TDR 2000 1.159 No-CD
- Wipeout 2097 1.0 No-CD
- ViperRacing 1.2.3b No-CD
and here you can find the official 1.2.3b patch
- Serious Sam The First encounter 1.05 EURO No-CD
NOTE: For automatically patching your files, copy lpatch.exe and lpatch.dat in the folder where is the original file to patch and launch lpatch.exe
NOTE: ALL the No-CD patches you see here are made on the LATEST versions of the games/programs and the zip package contains also a text file with the MD5 checksum of the original file and the list of all the bytes modified.
Contact me if you know a new version of one of these softwares