EIP-2026-115424

PRE-CVE

ID Software Quake 3 - 'SMURF' Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115424. PoCs published by Andy Gavin.

AI-analyzed exploit summary This exploit leverages a Quake 3 network protocol flaw to perform a UDP amplification DoS attack. It spoofs connection requests from a target IP to Quake servers, causing them to flood the target with amplified responses.

Description

ID Software Quake 3 - 'SMURF' Denial of Service

Exploits (1)

exploitdb WORKING POC VERIFIED

by Andy Gavin · cdoswindows

https://www.exploit-db.com/exploits/21016

View Code ZIP pw:eip

This exploit leverages a Quake 3 network protocol flaw to perform a UDP amplification DoS attack. It spoofs connection requests from a target IP to Quake servers, causing them to flood the target with amplified responses.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Quake 3 and other NetQuake-based games

No auth needed

Prerequisites: raw socket permissions (root access) · list of Quake servers · target IP address

MITRE ATT&CK

T1498 - Network Denial of Service T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026