Loading...
play.voidrealms.net
Click to copy IP
Loading...
discord.gg/voidrealms
Click to join
Avatar
Welcome to Void Realms!
To join our community, please login or register!
MINECRAFT SECURITY VULNERABILITY
ISkizzlesI Owner Web Admin Member Player
57 posts
51 topics
Discord: Skizzles#0001
IGN: ISkizzlesI
about 1 month ago

Couple of hours ago, a remote code execution vulnerability in Apache Log4j2 (Used by Java and Minecraft) appeared on the Internet. An attacker can use this vulnerability to construct a special data request packet and send it through Minecraft Chat, which eventually triggers remote code execution. (Allowing someone to execute code on a server and your client)

All servers on our network are restarting as we speak to fix this issue on our end

BUT WAIT this does not just affect servers, this can execute on your Minecraft Client as well. Add this into your JVM Arguments of your launcher to be safe on other servers:

-Dlog4j2.formatMsgNoLookups=true

Video on how to do so:

https://screenshots.skizzles.me/wAnA3/KiQEWOCU91.mp4/raw.mp4

It is recommended you do this for each "installation" you use.

 

THIS HAS BEEN FOUND AS FAR BACK AS 1.8

A majority of server versions are receiving patches mostly back to 1.16, some back to 1.12, I have seen none for servers running before 1.12. Protect yourself so you don't have to rely on servers to do so ❤️

Any questions or assistance with this feel free to ping me on Discord, DM me, or send me a message on here.



Last edited: about 1 month ago