RSS   Vulnerabilities for 'Alien arena 2006'   RSS

2006-03-10
 
CVE-2006-1147

 

 
The Com_sprintf function in q_shared.c in Alien Arena 2006 Gold Edition 5.00 does not properly NULL terminate certain long strings, which allows remote attackers (possibly authenticated) to cause a denial of service (application crash) via a long skin, weapon, or model name.

 
 
CVE-2006-1146

 

 
Stack-based buffer overflow in the Cmd_Say_f function in g_cmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers (possibly authenticated) to execute arbitrary code by sending a long message to the server.

 
 
CVE-2006-1145

 

 
Format string vulnerability in the safe_cprintf function in acebot_cmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers (possibly authenticated) to execute arbitrary code via unspecified vectors when the server sends crafted messages to the clients.

 

 >>> Vendor: Cor entertainment 2 Products
Alien arena 2006
Alien arena 2007


Copyright 2017, cxsecurity.com