EUVD-2006-3321

Malware in sbrugna...

CVE-2006-3324

The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine ioquake3 before revision 804 allows remote attackers to overwrite arbitrary files in the quake3 directory fshomepath cvar via a long string of filenames, as contained in the neededpaks buffer...

CVE-2006-3324

The CVE-2006-3324 entry describes a remote arbitrary-file overwrite vulnerability in the id3 Quake 3 Engine and ioquake3 (ioquake3) before revision 804, exploitable via the Automatic Downloading option by sending a long string of filenames contained in the neededpaks buffer. The underlying issue ...

CVE-2006-3324

The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine ioquake3 before revision 804 allows remote attackers to overwrite arbitrary files in the quake3 directory fshomepath cvar via a long string of filenames, as contained in the neededpaks buffer...

Files and cvars overwriting in Quake 3 engine (1.32c / rev 803 / ...)

Luigi Auriemma Application: Quake 3 engine http://www.idsoftware.com http://www.icculus.org/quake3/ Versions: Quake 3 = 1.32c Icculus.org Quake 3 = revision 803 other derived projects Games: exist many games which use the Quake 3 engine and probably they are all vulnerable but I'm not able and ha...