Linux Distros Unpatched Vulnerability : CVE-2011-1412

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sys/sysunix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0.8.x-15 and 0.8.x-16, allows remote game...

Sandbox Escape

In ioquake3 before 2017-03-14, the auto-downloading feature has insufficient content restrictions. This also affects Quake III Arena, OpenArena, OpenJK, iortcw, and other id Tech 3 aka Quake 3 engine forks. A malicious auto-downloaded file can trigger loading of crafted auto-downloaded files as...

CVE-2017-6903

In ioquake3 before 2017-03-14, the auto-downloading feature has insufficient content restrictions. This also affects Quake III Arena, OpenArena, OpenJK, iortcw, and other id Tech 3 aka Quake 3 engine forks. A malicious auto-downloaded file can trigger loading of crafted auto-downloaded files as...

UBUNTU-CVE-2017-6903

In ioquake3 before 2017-03-14, the auto-downloading feature has insufficient content restrictions. This also affects Quake III Arena, OpenArena, OpenJK, iortcw, and other id Tech 3 aka Quake 3 engine forks. A malicious auto-downloaded file can trigger loading of crafted auto-downloaded files as...

Security feature bypass

In ioquake3 before 2017-03-14, the auto-downloading feature has insufficient content restrictions. This also affects Quake III Arena, OpenArena, OpenJK, iortcw, and other id Tech 3 aka Quake 3 engine forks. A malicious auto-downloaded file can trigger loading of crafted auto-downloaded files as...

CVE-2017-6903

In ioquake3 before 2017-03-14, the auto-downloading feature has insufficient content restrictions. This also affects Quake III Arena, OpenArena, OpenJK, iortcw, and other id Tech 3 aka Quake 3 engine forks. A malicious auto-downloaded file can trigger loading of crafted auto-downloaded files as...

id Tech 3 -- remote code execution vulnerability

The content auto-download of id Tech 3 can be used to deliver maliciously crafted content, that triggers downloading of further content and loading and executing it as native code with user credentials. This affects ioquake3, ioUrbanTerror, OpenArena, the original Quake 3 Arena and other forks...

CVE-2010-5077

server/svmain.c in Quake3 Arena, as used in ioquake3 before r1762, OpenArena, Tremulous, and other products, allows remote attackers to cause a denial of service network traffic amplification via a spoofed 1 getstatus or 2 rcon request...

Debian Security Advisory DSA 2442-2 (openarena)

The remote host is missing an update to openarena announced via advisory DSA 2442-2. OpenVAS Vulnerability Test $Id: deb24422.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2442-2 openarena Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Debian Security Advisory DSA 2442-1 (openarena)

The remote host is missing an update to openarena announced via advisory DSA 2442-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Debian: Security Advisory (DSA-2442-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 2442-1 (openarena)

The remote host is missing an update to openarena announced via advisory DSA 2442-1. OpenVAS Vulnerability Test $Id: deb24421.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2442-1 openarena Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Fedora Update for quake3 FEDORA-2011-10039

Check for the Version of quake3 OpenVAS Vulnerability Test Fedora Update for quake3 FEDORA-2011-10039 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

[SECURITY] [DSA 2442-2] openarena regression

------------------------------------------------------------------------- Debian Security Advisory DSA-2442-2 [email protected] http://www.debian.org/security/ Florian Weimer March 31, 2012 http://www.debian.org/security/faq -...

DSA-2442-2 openarena - UDP traffic amplification

Bulletin has no description...

Debian DSA-2442-2 : openarena - UDP traffic amplification

It has been discovered that spoofed 'getstatus' UDP requests are being sent by attackers to servers for use with games derived from the Quake 3 engine such as openarena. These servers respond with a packet flood to the victim whose IP address was impersonated by the attackers, causing a denial of...

[SECURITY] [DSA 2442-1] openarena security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2442-1 [email protected] http://www.debian.org/security/ Florian Weimer March 26, 2012 http://www.debian.org/security/faq -...

DSA-2442-1 openarena - UDP traffic amplification

Bulletin has no description...

Fedora Update for openarena FEDORA-2011-10039

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for openarena FEDORA-2011-10039

Check for the Version of openarena OpenVAS Vulnerability Test Fedora Update for openarena FEDORA-2011-10039 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...