Cor Entertainment : Security Vulnerabilities, CVEs, Published In 2006
The Com_sprintf function in q_shared.c in Alien Arena 2006 Gold Edition 5.00 does not properly NULL terminate certain long strings, which allows remote attackers (possibly authenticated) to cause a denial of service (application crash) via a long skin, weapon, or model name.
Max CVSS
4.0
EPSS Score
2.02%
Published
2006-03-10
Updated
2018-10-18
Stack-based buffer overflow in the Cmd_Say_f function in g_cmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers (possibly authenticated) to execute arbitrary code by sending a long message to the server.
Max CVSS
6.5
EPSS Score
12.27%
Published
2006-03-10
Updated
2018-10-18
Format string vulnerability in the safe_cprintf function in acebot_cmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers (possibly authenticated) to execute arbitrary code via unspecified vectors when the server sends crafted messages to the clients.
Max CVSS
6.5
EPSS Score
2.95%
Published
2006-03-10
Updated
2018-10-18
3 vulnerabilities found