CVE-2006-3324 - The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine (ioquake3)

CVE-2006-3324

Summary

The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine (ioquake3) before revision 804 allows remote attackers to overwrite arbitrary files in the quake3 directory (fs_homepath cvar) via a long string of filenames, as contained in the neededpaks buffer.

References

Vulnerable Configurations

cpe:2.3:a:id_software:quake_3_engine:*:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:*:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:1.32b:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:1.32b:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:1.32c:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:1.32c:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_803:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_803:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_804:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_804:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 18-10-2018 - 16:46)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:P/A:N

refmap via4

bid	18685
bugtraq	20060627 Files and cvars overwriting in Quake 3 engine (1.32c / rev 803 / ...) 20060628 Re: Files and cvars overwriting in Quake 3 engine (1.32c / rev 803 / ...)
confirm	http://svn.icculus.org/quake3?rev=804&view=rev
misc	http://aluigi.altervista.org/adv/q3cfilevar-adv.txt
secunia	20401 20851
sreason	1171
vupen	ADV-2006-2569
xf	quake3-cvar-file-overwrite(27486)

Last major update

18-10-2018 - 16:46

Published

30-06-2006 - 23:05

Last modified

18-10-2018 - 16:46