[...]right, was worth a thread since it wasnt patched for like 2 years and few weeks after it got patched you make thread hmm

http://forums.alliedmods.net/showthread.php?t=108215 sourcemod rcon exploit that got patched.

[...] such as? [...] http://www.whiteandblack.co.nz/wp-content/uploads/2010/11/bullshit-stamp.jpg This is honestly more sensationalist that Fox news. Quite often when people find out how computers really work and the fact that they aren't nearly as solid and perfect as they had previously thought, they just shit themselves and demand things be done "right", thing is they still don't really understand. Example: That skybox installer batch script I made ages for movie making? I could have quite easily slipped into it some code to make it steal all your firefox browser cookies (due to another security hole in Firefox itself) and potentially got a hold of your steam/bank/paypal/ebay/email usernames and passwords. Even more trivially so If it had been a fully blown program like the PldX recording tool (!!!). Thats not to say "OMG DON'T RUN SCRIPTS OR PROGRAMS EVER!!", its just don't be a fucking spastic and run random things from dodgy websites, following that philosophy even without an anti-virus (which I don't), you will avoid literally 99.9% of all viruses/malware in existence. That remaining 0.1% wouldn't likely have been stopped by an anti-virus anyway. tl;dr congratulations, you've just read something on a random website, stop fear mongering.

They can mess up someones server pretty bad and do all kind of shit.

With the right addons installed on the server they can even spread themself.

Another reason to use read-only cfgs?! :E

[...]There's server side plugins to block these exploits: http://wiki.alliedmods.net/SRCDS_Hardening

[...] There was an exploit with sv_allowupload an exploit that allowed you to lagg/crash servers an rcon hack exploit and much more.

Link?

[...] Quick, let's tell everyone in Europe! Sod it, I'm not going on any other servers ever.