19 matches found
Linux Distros Unpatched Vulnerability : CVE-2011-2764
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The FSCheckFilenameIsNotExecutable function in qcommon/files.c in the ioQuake3 engine 1.36 and earlier, as used in World of Padman, Smokin' Guns, OpenArena,...
Fedora Update for tremulous FEDORA-2012-2238
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for quake3 FEDORA-2011-10039
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for openarena FEDORA-2011-10039
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for tremulous FEDORA-2012-2419
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for tremulous FEDORA-2012-2405
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 16 : tremulous-1.2.0-0.4.beta1.fc16 (2012-2419)
Fixes CVE-2011-2764 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
Fedora 15 : tremulous-1.2.0-0.4.beta1.fc15 (2012-2405)
Fixes CVE-2011-2764 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
Fedora 17 : tremulous-1.2.0-0.4.beta1.fc17 (2012-2238)
Fixes CVE-2011-2764 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
Fedora 16 : openarena-0.8.5-4.fc16 / quake3-1.36-11.svn2102.fc16 (2011-10039)
Update to 1.36 svn snapshot r2102 - This fixes 2 security issues where a malicious server could execute arbitrary code on connecting clients rhbz725951 : - CVE-2011-1412: Execute arbitrary shell commands on connecting clients - CVE-2011-2764: Arbitrary code execution when native-code DLLs are...
Fedora Update for quake3 FEDORA-2011-9774
Check for the Version of quake3 OpenVAS Vulnerability Test Fedora Update for quake3 FEDORA-2011-9774 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...
Fedora Update for openarena FEDORA-2011-9898
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for openarena FEDORA-2011-9774
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for openarena FEDORA-2011-9774
Check for the Version of openarena OpenVAS Vulnerability Test Fedora Update for openarena FEDORA-2011-9774 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
Fedora Update for quake3 FEDORA-2011-9774
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 14 : openarena-0.8.5-4.fc14 / quake3-1.36-11.svn2102.fc14 (2011-9898)
Update to 1.36 svn snapshot r2102 - This fixes 2 security issues where a malicious server could execute arbitrary code on connecting clients rhbz725951 : - CVE-2011-1412: Execute arbitrary shell commands on connecting clients - CVE-2011-2764: Arbitrary code execution when native-code DLLs are...
Fedora 15 : openarena-0.8.5-4.fc15 / quake3-1.36-11.svn2102.fc15 (2011-9774)
Update to 1.36 svn snapshot r2102 - This fixes 2 security issues where a malicious server could execute arbitrary code on connecting clients rhbz725951 : - CVE-2011-1412: Execute arbitrary shell commands on connecting clients - CVE-2011-2764: Arbitrary code execution when native-code DLLs are...
CVE-2011-2764
The FSCheckFilenameIsNotExecutable function in qcommon/files.c in the ioQuake3 engine 1.36 and earlier, as used in World of Padman, Smokin' Guns, OpenArena, Tremulous, and ioUrbanTerror, does not properly determine dangerous file extensions, which allows remote attackers to execute arbitrary code...
CVE-2011-2764
CVE-2011-2764 affects the ioQuake3 engine (version 1.36 and earlier) as used in World of Padman, Smokin’ Guns, OpenArena, Tremulous, and ioUrbanTerror. The vulnerability arises from the function FS_CheckFilenameIsNotExecutable in qcommon/files.c, which does not properly detect dangerous file exte...