CVE-2005-0568

Soldier of Fortune II 1.03 gold - Denial of Service via Large cl_guid Value

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0568. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary This exploit code is a proof-of-concept for CVE-2005-0568, which targets a vulnerability in the Huffman compression algorithm used by the Quake 3 engine. The code includes functions for Huffman tree construction and bitstream manipulation, which can be used to trigger a denial-of-service condition.

Description

Soldier of Fortune II 1.03 gold allows remote attackers to cause a denial of service (application crash) via a large cl_guid value, which results in an invalid pointer dereference.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Luigi Auriemma · cdoswindows

https://www.exploit-db.com/exploits/841

View Code ZIP pw:eip

This exploit code is a proof-of-concept for CVE-2005-0568, which targets a vulnerability in the Huffman compression algorithm used by the Quake 3 engine. The code includes functions for Huffman tree construction and bitstream manipulation, which can be used to trigger a denial-of-service condition.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Quake 3 engine (versions using vulnerable Huffman algorithm)

No auth needed

Prerequisites: Network access to the target system running vulnerable Quake 3 engine

MITRE ATT&CK