CVE-2005-0983 - Quake 3 engine, as used in multiple games, allows remote attackers to cause a denial of service (cli

CVE-2005-0983

Summary

Quake 3 engine, as used in multiple games, allows remote attackers to cause a denial of service (client disconnect) via a long message, which is not properly truncated and causes the engine to process the remaining data as if it were network data.

References

Vulnerable Configurations

cpe:2.3:a:activision:call_of_duty:1.4:*:*:*:*:*:*:*
cpe:2.3:a:activision:call_of_duty:1.4:*:*:*:*:*:*:*
cpe:2.3:a:activision:call_of_duty:1.5b:*:*:*:*:*:*:*
cpe:2.3:a:activision:call_of_duty:1.5b:*:*:*:*:*:*:*
cpe:2.3:a:activision:call_of_duty_united_offensive:1.41:*:*:*:*:*:*:*
cpe:2.3:a:activision:call_of_duty_united_offensive:1.41:*:*:*:*:*:*:*
cpe:2.3:a:activision:call_of_duty_united_offensive:1.51b:*:*:*:*:*:*:*
cpe:2.3:a:activision:call_of_duty_united_offensive:1.51b:*:*:*:*:*:*:*
cpe:2.3:a:activision:return_to_castle_wolfenstein:1.0:*:*:*:*:*:*:*
cpe:2.3:a:activision:return_to_castle_wolfenstein:1.0:*:*:*:*:*:*:*
cpe:2.3:a:activision:return_to_castle_wolfenstein:1.1:*:*:*:*:*:*:*
cpe:2.3:a:activision:return_to_castle_wolfenstein:1.1:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_arena:1.1.7:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_arena:1.1.7:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_arena:1.16:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_arena:1.16:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_arena:1.31:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_arena:1.31:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_arena_server:1.29f:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_arena_server:1.29f:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_arena_server:1.29g:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_arena_server:1.29g:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:*:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:*:*:*:*:*:*:*:*
cpe:2.3:a:id_software:wolfenstein_enemy_territory:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:id_software:wolfenstein_enemy_territory:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:id_software:wolfenstein_enemy_territory:2.56:*:*:*:*:*:*:*
cpe:2.3:a:id_software:wolfenstein_enemy_territory:2.56:*:*:*:*:*:*:*
cpe:2.3:a:lucasarts:star_wars_jedi_knight_ii_jedi_outcast:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:lucasarts:star_wars_jedi_knight_ii_jedi_outcast:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:lucasarts:star_wars_jedi_knight_jedi_academy:1.0.11:*:*:*:*:*:*:*
cpe:2.3:a:lucasarts:star_wars_jedi_knight_jedi_academy:1.0.11:*:*:*:*:*:*:*
cpe:2.3:a:raven_software:soldier_of_fortune_2:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:raven_software:soldier_of_fortune_2:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:raven_software:soldier_of_fortune_2:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:raven_software:soldier_of_fortune_2:1.0.3:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 18-10-2016 - 03:16)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	12976
bugtraq	20050402 In-game players kicking in the Quake 3 engine
misc	http://aluigi.altervista.org/adv/q3msgboom-adv.txt http://bani.anime.net/banimod/forums/viewtopic.php?p=27322
secunia	14811

Last major update

18-10-2016 - 03:16

Published

02-05-2005 - 04:00

Last modified

18-10-2016 - 03:16