Idsoftware: Security Vulnerabilities
A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tech 1 (aka Doom engine) allows arbitrary code execution via an unsafe usage of fscanf, because it does not limit the number of characters to be read in a format argument.
CVSS Score
9.8
EPSS Score
0.02
Published
2020-06-24