[Crash/Exploit] Mass Client Crash - island-texas-floor (GTA5_b3258.exe!sub_1411D3FA8)

[Whisperisgod]

What happened?

I encountered a forced client crash caused by a malicious user (cheater) in the session. We visually confirmed the cheater performing a specific action just before the crash.

Crucially, it wasn't just me; all players in the relevant area experienced the same crash simultaneously. This indicates a broadcasted exploit targeting the client logic via networked objects.

The stack trace points to GTA5_b3258.exe!sub_1411D3FA8 initiated by rage::netObject::Update, confirming a network object update failure.

Expected result

The game client should handle invalid network events or malformed sync data triggered by other clients gracefully, without causing a hard crash (CTD) for everyone in the vicinity.

Reproduction steps

Join a networked session/server (Build 3095).

A malicious user executes the crash exploit (likely manipulating net objects).

The client freezes and crashes immediately.

(Observed result: All nearby players crash with the island-texas-floor signature).

Importancy

Crash

Area(s)

FiveM

Specific version(s)

Fivem Artifacts 23683 Build 3095

Additional information

CfxCrashDump_2025_12_25_16_16_55.zip

[Whisperisgod]

CfxCrashDump_2025_12_25_15_32_14.zip
CfxCrashDump_2025_12_25_15_42_30.zip

[hackingfatpeople]

we are getting the same thing

[hackingfatpeople]

c++ menu named South Menu

[likizao]

the cheater creates “clones” of their own ped. During entityCreating, IsPedAPlayer returns true.
normally, the cheater crashes with the following reason: Game crashed: Recursive-recursive error: CPlayerSyncData Pool Full, Size == 1

.

there are a few ways to validate player creation during entityCreating, such as model hash, spawn count, etc.
It’s worth noting that IsPedAPlayer (client-side) returns false when iterating through the CPed pool.

[Dopemenu]

likizao sai daqui oxi

[hackingfatpeople]

                                    local playerPedModel = 1885233650
                                    local playerPedCount = 0
                                    local playerPedEntities = {}
                                    for _, entity in ipairs(GetAllPeds()) do
                                        if NetworkGetEntityOwner(entity) == playerSrc then
                                            local model = GetEntityModel(entity)
                                            local isPlayer = IsPedAPlayer(entity)
                                            if model == playerPedModel and isPlayer then
                                                playerPedCount = playerPedCount + 1
                                                table.insert(playerPedEntities, entity)
                                            end
                                        end
                                    end
                                    if playerPedCount > 1 then
                                        print(string.format("Player %s (ID: %s) has %d player peds with model %s: %s", playerName, playerSrc, playerPedCount, playerPedModel, table.concat(playerPedEntities, ", ")))
                                    end

works for us, might not work for you

[hackingfatpeople]

clearly change to drop instead of print

[Whisperisgod]

                                    local playerPedModel = 1885233650
                                    local playerPedCount = 0
                                    local playerPedEntities = {}
                                    for _, entity in ipairs(GetAllPeds()) do
                                        if NetworkGetEntityOwner(entity) == playerSrc then
                                            local model = GetEntityModel(entity)
                                            local isPlayer = IsPedAPlayer(entity)
                                            if model == playerPedModel and isPlayer then
                                                playerPedCount = playerPedCount + 1
                                                table.insert(playerPedEntities, entity)
                                            end
                                        end
                                    end
                                    if playerPedCount > 1 then
                                        print(string.format("Player %s (ID: %s) has %d player peds with model %s: %s", playerName, playerSrc, playerPedCount, playerPedModel, table.concat(playerPedEntities, ", ")))
                                    end

works for us, might not work for you

PlayerSrc?

[Whisperisgod]

not working.

[Wezzovich]

Having the same problem with the cheaters.

[Dopemenu]

try to kill ur self maybe work

[imLocutor]

f dms @Dopemenu