Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2017-6903

Published: 14/03/2017 Updated: 24/08/2020
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Ioquake3

Vulnerability Summary

In ioquake3 prior to 2017-03-14, the auto-downloading feature has insufficient content restrictions. This also affects Quake III Arena, OpenArena, OpenJK, iortcw, and other id Tech 3 (aka Quake 3 engine) forks. A malicious auto-downloaded file can trigger loading of crafted auto-downloaded files as native code DLLs. A malicious auto-downloaded file can contain configuration defaults that override the user's. Executable bytecode in a malicious auto-downloaded file can set configuration variables to values that will result in unwanted native code DLLs being loaded, resulting in sandbox escape.

Vulnerable Product Search on Vulmon Subscribe to Product

ioquake3 ioquake3

Vendor Advisories

Debian CVElist Bug Report Logs: ioquake3: CVE-2017-6903: privilege escalation by auto-downloaded files
Debian Bug report logs - #857699 ioquake3: CVE-2017-6903: privilege escalation by auto-downloaded files Package: ioquake3; Maintainer for ioquake3 is Debian Games Team <pkg-games-devel@listsaliothdebianorg>; Source for ioquake3 is src:ioquake3 (PTS, buildd, popcon) Affects: openarena, quake3 Reported by: Daniel Gibson < ...
Debian CVElist Bug Report Logs: CVE-2017-11721: read buffer overflow in MSG_ReadBits
Debian Bug report logs - #870725 CVE-2017-11721: read buffer overflow in MSG_ReadBits Package: src:ioquake3; Maintainer for src:ioquake3 is Debian Games Team <pkg-games-devel@listsaliothdebianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Fri, 4 Aug 2017 14:33:05 UTC Severity: grave Tags: fixed-upst ...
Debian Security Advisories: DSA-3812-1 ioquake3 -- security update
It was discovered that ioquake3, a modified version of the ioQuake3 game engine performs insufficent restrictions on automatically downloaded content (pk3 files or game code), which allows malicious game servers to modify configuration settings including driver settings For the stable distribution (jessie), this problem has been fixed in version 1 ...

References

NVD-CWE-noinfohttps://ioquake3.org/2017/03/13/important-security-update-please-update-ioquake3-immediately/https://github.com/JACoders/OpenJK/commit/8956a35e7b91c4a0dd1fa6db1d28c7f0efbab2d7https://github.com/iortcw/iortcw/commit/b6ff2bcb1e4e6976d61e316175c6d7c99860fe20https://github.com/iortcw/iortcw/commit/b248763e4878ef12d5835ece6600be8334f67da1https://github.com/iortcw/iortcw/commit/11a83410153756ae350a82ed41b08d128ff7f998https://github.com/ioquake/ioq3/commit/f61fe5f6a0419ef4a88d46a128052f2e8352e85dhttps://github.com/ioquake/ioq3/commit/b173ac05993f634a42be3d3535e1b158de0c3372https://github.com/ioquake/ioq3/commit/376267d534476a875d8b9228149c4ee18b74a4fdhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857699http://www.debian.org/security/2017/dsa-3812https://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857699https://www.debian.org/security/./dsa-3812
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120CVE-2024-35921CVE-2024-35874brute forceCVE-2024-36080unprivilegedCVE-2024-35917IDORCVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook