Buffer overflow in the Quake 3 Engine, as used by (1) ET 2.60, (2) Return to Castle Wolfenstein 1.41, and (3) Quake III Arena 1.32b allows remote attackers to execute arbitrary commands via a long remapShader command.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Quake_3_arena | Id_software | 1.32b (including) | 1.32b (including) |
| Quake_3_engine | Id_software | 1.32b (including) | 1.32b (including) |
| Return_to_castle_wolfenstein | Id_software | 1.41 (including) | 1.41 (including) |
| Wolfenstein_enemy_territory | Id_software | 2.60 (including) | 2.60 (including) |
References
- http://secunia.com/advisories/19984
- http://secunia.com/advisories/20065
- http://www.gentoo.org/security/en/glsa/glsa-200605-12.xml
- http://www.osvdb.org/25279
- http://www.securityfocus.com/archive/1/433349/100/0/threaded
- http://www.securityfocus.com/bid/17857
- http://www.vupen.com/english/advisories/2006/1676
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26264
- https://www.exploit-db.com/exploits/1750
- http://secunia.com/advisories/19984
- http://secunia.com/advisories/20065
- http://www.gentoo.org/security/en/glsa/glsa-200605-12.xml
- http://www.osvdb.org/25279
- http://www.securityfocus.com/archive/1/433349/100/0/threaded
- http://www.securityfocus.com/bid/17857
- http://www.vupen.com/english/advisories/2006/1676
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26264
- https://www.exploit-db.com/exploits/1750