CVE-2011-2764

2011-08-0402:45:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2011-2764

fs_checkfilenameisnotexecutable

ioquake3

remote code execution

addon

nvd

7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.108 Low

EPSS

Percentile

95.1%

JSON

The FS_CheckFilenameIsNotExecutable function in qcommon/files.c in the ioQuake3 engine 1.36 and earlier, as used in World of Padman, Smokin’ Guns, OpenArena, Tremulous, and ioUrbanTerror, does not properly determine dangerous file extensions, which allows remote attackers to execute arbitrary code via a crafted third-party addon that creates a Trojan horse DLL file.

CPENameOperatorVersion
urbanterror:iourbanterrorurbanterror iourbanterroreq*
ioquake3:ioquake3_engineioquake3 ioquake3 engineeq1.36
tremulous:tremuloustremulouseq*
smokin-guns:smokin\'_gunssmokin-guns smokin\' gunseq*
worldofpadman:world_of_padmanworldofpadman world of padmaneq*
openarena:openarenaopenarenaeq*

CPE	Name	Operator	Version
urbanterror:iourbanterror	urbanterror iourbanterror	eq	*
ioquake3:ioquake3_engine	ioquake3 ioquake3 engine	eq	1.36
tremulous:tremulous	tremulous	eq	*
smokin-guns:smokin\'_guns	smokin-guns smokin\' guns	eq	*
worldofpadman:world_of_padman	worldofpadman world of padman	eq	*
openarena:openarena	openarena	eq	*