Cube@2005-08-09 Security Vulnerabilities and Issues — Cube@2005-08-09 CVE List

Lucene search

SauerbratenCube2005-08-09

4 matches found

CVE•added 2006/03/09 1:6 p.m.•41 views

CVE-2006-1102

Sauerbraten 2006_02_28, as derived from the Cube engine, allows remote attackers to cause a denial of service (client exit) by forcing the server to change to a map (ogz) file whose name contains ".." sequences and has a certain length that prevents the addition of the ".ogz" extension.

5CVSS6.5AI score0.21168EPSS

CVE•added 2006/03/09 1:6 p.m.•40 views

CVE-2006-1101

The (1) sgetstr and (2) getint functions in Sauerbraten 2006_02_28, as derived from the Cube engine, allow remote attackers to cause a denial of service (segmentation fault) via long streams of input data that trigger an out-of-bounds read, as demonstrated using SV_EXT tag data in the Cube engine, ...

5CVSS6.5AI score0.43683EPSS

CVE•added 2006/03/09 1:6 p.m.•27 views

CVE-2006-1100

Buffer overflow in the sgetstr function in shared/cube.h in Sauerbraten 2006_02_28 and earlier, as derived from the Cube engine, allows remote attackers to execute arbitrary code via long streams of input data.

7.5CVSS7.8AI score0.26279EPSS

CVE•added 2006/03/09 1:6 p.m.•25 views

CVE-2006-1103

engine/server.cpp in Sauerbraten 2006_02_28, as derived from the Cube engine, allows remote attackers to cause a denial of service (segmentation fault) via a client that does not completely join the game and times out, which results in a null pointer dereference.

5CVSS6.6AI score0.06008EPSS