Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

id software quake 2 vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-1999-1230
Quake 2 server allows remote malicious users to cause a denial of service via a spoofed UDP packet with a source address of 127.0.0.1, which causes the server to attempt to connect to itself.
Id Software Quake 2
7.5
CVSSv2
CVE-2006-3400
Stack-based buffer overflow in the CG_ServerCommand function in Quake 3 Engine as used by Soldier of Fortune 2 (SOF2MP) GOLD 1.03 allows remote malicious users to cause a denial of service and possibly execute code by sending a long command from the server.
Id Software Quake 3 Engine Icculus 812Raven Software Soldier Of Fortune 2 1.03Id Software Quake 3 Engine 1.32bId Software Quake 3 Engine 1.32c
2.1
CVSSv2
CVE-1999-1229
Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the target file.
Id Software Quake 2 Server
5
CVSSv2
CVE-2002-0770
Quake 2 (Q2) server 3.20 and 3.21 allows remote malicious users to obtain sensitive server cvar variables, obtain directory listings, and execute Q2 server admin commands via a client that does not expand "$" macros, which causes the server to expand the macros and leak...
Id Software Quake 2i Server 3.20Id Software Quake 2i Server 3.21
5
CVSSv2
CVE-2005-0983
Quake 3 engine, as used in multiple games, allows remote malicious users to cause a denial of service (client disconnect) via a long message, which is not properly truncated and causes the engine to process the remaining data as if it were network data.
Activision Call Of Duty 1.4Activision Call Of Duty 1.5bId Software Quake 3 Arena 1.31Id Software Quake 3 Arena Server 1.29fRaven Software Soldier Of Fortune 2 1.0.3Activision Return To Castle Wolfenstein 1.0Activision Return To Castle Wolfenstein 1.1Id Software Wolfenstein Enemy Territory 1.0.2Id Software Wolfenstein Enemy Territory 2.56Activision Call Of Duty United Offensive 1.41Activision Call Of Duty United Offensive 1.51bId Software Quake 3 Arena Server 1.29gId Software Quake 3 EngineId Software Quake 3 Arena 1.1.7Id Software Quake 3 Arena 1.16Lucasarts Star Wars Jedi Knight Ii Jedi Outcast 1.0.4Lucasarts Star Wars Jedi Knight Jedi Academy 1.0.11Raven Software Soldier Of Fortune 2 1.0.2
7.6
CVSSv2
CVE-2006-2236
Buffer overflow in the Quake 3 Engine, as used by (1) ET 2.60, (2) Return to Castle Wolfenstein 1.41, and (3) Quake III Arena 1.32b allows remote malicious users to execute arbitrary commands via a long remapShader command.
Id Software Wolfenstein Enemy Territory 2.60Id Software Quake 3 Engine 1.32bId Software Return To Castle Wolfenstein 1.41Id Software Quake 3 Arena 1.32b
7.5
CVSSv2
CVE-1999-1502
Buffer overflows in Quake 1.9 client allows remote malicious servers to execute arbitrary commands via long (1) precache paths, (2) server name, (3) server address, or (4) argument to the map console command.
Id Software Quake 1.9
9.3
CVSSv2
CVE-2007-5248
Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and previous versions, Quake 4 1.4.2 and previous versions, and Prey 1.3 and previous versions, when Punkbuster (PB) is enabled, allow remote malicious users to execute arbitrary code...
Id Software Doom 3Id Software Quake 4Take2games Prey
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2023-52689CVE-2024-23803client sideCVE-2023-52696information disclosureCVE-2024-35843CVE-2024-27130CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook