Id Software: >> Quake 3 Arena Security Vulnerabilities
Buffer overflow in the Quake 3 Engine, as used by (1) ET 2.60, (2) Return to Castle Wolfenstein 1.41, and (3) Quake III Arena 1.32b allows remote attackers to execute arbitrary commands via a long remapShader command.
CVSS Score
7.6
EPSS Score
0.017
Published
2006-05-08
Quake 3 engine, as used in multiple games, allows remote attackers to cause a denial of service (client disconnect) via a long message, which is not properly truncated and causes the engine to process the remaining data as if it were network data.
CVSS Score
5.0
EPSS Score
0.013
Published
2005-05-02
Quake 3 arena 1.29f and 1.29g allows remote attackers to cause a denial of service (crash) via a malformed connection packet that begins with several char-255 characters.
CVSS Score
5.0
EPSS Score
0.012
Published
2001-07-29
Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot (..) attack.
CVSS Score
6.4
EPSS Score
0.005
Published
2000-05-03