RunningBon

6 exploits Active since Jun 2006
CVE-2006-3325 EXPLOITDB cpp WORKING POC
id3 Quake 3 Engine <1.32c - RCE
client/cl_parse.c in the id3 Quake 3 Engine 1.32c and the Icculus Quake 3 Engine (ioquake3) revision 810 and earlier allows remote malicious servers to overwrite arbitrary write-protected cvars variables on the client, such as cl_allowdownload for Automatic Downloading and fs_homepath for the quake3 path, via a string of cvar names and values sent from the server. NOTE: this can be combined with another vulnerability to overwrite arbitrary files.
CVE-2006-3324 EXPLOITDB cpp WORKING POC
id3 Quake 3 Engine <804 - RCE
The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine (ioquake3) before revision 804 allows remote attackers to overwrite arbitrary files in the quake3 directory (fs_homepath cvar) via a long string of filenames, as contained in the neededpaks buffer.
CVE-2006-3325 EXPLOITDB cpp WORKING POC
id3 Quake 3 Engine <1.32c - RCE
client/cl_parse.c in the id3 Quake 3 Engine 1.32c and the Icculus Quake 3 Engine (ioquake3) revision 810 and earlier allows remote malicious servers to overwrite arbitrary write-protected cvars variables on the client, such as cl_allowdownload for Automatic Downloading and fs_homepath for the quake3 path, via a string of cvar names and values sent from the server. NOTE: this can be combined with another vulnerability to overwrite arbitrary files.
CVE-2006-3401 EXPLOITDB c++ WORKING POC
Quake 3 Engine <1.32c - Buffer Overflow
Stack-based buffer overflow in Quake 3 Engine as used by Quake 3: Arena 1.32b and 1.32c allows remote attackers to cause a denial of service and possibly execute code via long CS_ITEMS values.
EIP-2026-118771 EXPLOITDB c WORKING POC
Medal of Honor - 'getinfo' Remote Buffer Overflow
CVE-2006-3400 EXPLOITDB c++ WORKING POC
Quake 3 Engine - Stack-Based Buffer Overflow in CG_ServerCommand
Stack-based buffer overflow in the CG_ServerCommand function in Quake 3 Engine as used by Soldier of Fortune 2 (SOF2MP) GOLD 1.03 allows remote attackers to cause a denial of service and possibly execute code by sending a long command from the server.