2 matches found
CVE-2007-5248
Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format...
CVE-2007-5248
CVE-2007-5248 affects the ID Software Doom 3 engine (Doom 3 1.3.1 and earlier; Quake 4 1.4.2 and earlier; Prey 1.3 and earlier) when Punkbuster (PB) is enabled. The vulnerability arises from format string handling in two PB packets (PB_Y to YPG server; PB_U to UCON), enabling remote attackers to ...