CVE-2026-10231

A flaw was found in Assimp, a library for importing various 3D model formats. A local attacker could exploit a heap-based buffer overflow vulnerability in the Half-Life 1 MDL Loader component. By manipulating a specific argument, an attacker could cause the application to crash, leading to a deni...

EUVD-2026-33563

A vulnerability was identified in Assimp up to 6.0.4. This impacts the function Assimp::MDL::HalfLife::HL1MDLLoader::readanimations of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally...

AMX Mod X 路径遍历漏洞

AMX Mod X is an open source Metamod plugin for Half Life 1 by AlliedModders. AMX Mod X has a path traversal vulnerability that originates in the function cmdVoteMap in the file plugins/adminvote.sma of the component Console Command Handler, which can be exploited by an attacker to cause path...

Valve: Buffer overflow In hl.exe's launch -game argument allows an attacker to execute arbitrary code locally or from browser

Half Life 1 allows users to set various launch arguments when running the game from the command line, one of them is "-game" which specifies the game/mod to be launched. Documented here hl.exe -game The contents of this argument is copied via a call to strcpy onto the stack without any size...

Valve: [Half-Life 1] Malformed map name leads to memory corruption and code execution

A stack overflow takes place when map names with malformed names are listed which can be used to execute arbitrary code. I made a Proof of Concept that executes gnome-calculator on Linux. This was tested on Half Life 2018-08-29 on Linux, Ubuntu 18.04. To reproduce: - Extract the attached zip-file...