Buffer overflow in command-packet processing of Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a packet with a long cmd_args buffer.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Quake_ii_server | Id_software | 3.20 (including) | 3.20 (including) |
Quake_ii_server | Id_software | 3.21 (including) | 3.21 (including) |