Description
Buffer overflow in the Quake 3 Engine, as used by (1) ET 2.60, (2) Return to Castle Wolfenstein 1.41, and (3) Quake III Arena 1.32b allows remote attackers to execute arbitrary commands via a long remapShader command.
Affected products
- id_software / quake_3_arena1.32b – 1.32b
- id_software / quake_3_engine1.32b – 1.32b
- id_software / return_to_castle_wolfenstein1.41 – 1.41
- id_software / wolfenstein_enemy_territory2.60 – 2.60
References
- MISChttp://www.securityfocus.com/archive/1/433349/100/0/threaded
- VENDOR_ADVISORYhttp://secunia.com/advisories/19984
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/1676
- MISChttp://www.securityfocus.com/bid/17857
- MISChttp://www.gentoo.org/security/en/glsa/glsa-200605-12.xml
- VENDOR_ADVISORYhttp://secunia.com/advisories/20065
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/26264
- EXPLOIThttps://www.exploit-db.com/exploits/1750
- MISChttp://www.osvdb.org/25279