Description
Stack-based buffer overflow in Quake 3 Engine as used by Quake 3: Arena 1.32b and 1.32c allows remote attackers to cause a denial of service and possibly execute code via long CS_ITEMS values.
Affected products
- id_software / quake_3_engine1.32b – 1.32b
- id_software / quake_3_engine1.32c – 1.32c
- id_software / quake_3_engineicculus_812 – icculus_812
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/20946
- VENDOR_ADVISORYhttp://secunia.com/advisories/20961
- EXPLOIThttps://www.exploit-db.com/exploits/1977
- MISChttp://www.securityfocus.com/bid/18777
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/27616
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/2657
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/2684