Instituto Nacional de ciberseguridad. Sección Incibe
Instituto Nacional de Ciberseguridad. Sección INCIBE-CERT

Go to Calendar     Go to Press Room     Go to Newsletters subscription

Search

CVE-2006-3325

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/06/2006
Last modified:
18/10/2018

Description

client/cl_parse.c in the id3 Quake 3 Engine 1.32c and the Icculus Quake 3 Engine (ioquake3) revision 810 and earlier allows remote malicious servers to overwrite arbitrary write-protected cvars variables on the client, such as cl_allowdownload for Automatic Downloading and fs_homepath for the quake3 path, via a string of cvar names and values sent from the server. NOTE: this can be combined with another vulnerability to overwrite arbitrary files.

Impact

Vector 2.0
AV:N/AC:L/Au:N/C:N/I:P/A:N CVSS v2.0 Severity and Metrics:

Base Score: 5.00 MEDIUM
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Attack Vector (AV): Network
Attack Complexity (AC): Low
Authentication (Au): None
Confidentiality (C): None
Integrity (I): Physical
Availability (A): None

Base Score 2.0
5.00
Severity 2.0
MEDIUM

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:id_software:quake_3_engine:*:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:1.32b:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:1.32c:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_803:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_804:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_805:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_806:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_807:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_808:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_809:*:*:*:*:*:*:*
cpe:2.3:a:id_software:quake_3_engine:icculus_810:*:*:*:*:*:*:*

To consult the complete list of CPE names with products and versions, see this page


References to Advisories, Solutions, and Tools