CVE-2006-1100
- EPSS 26.28%
- Veröffentlicht 09.03.2006 13:06:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Buffer overflow in the sgetstr function in shared/cube.h in Sauerbraten 2006_02_28 and earlier, as derived from the Cube engine, allows remote attackers to execute arbitrary code via long streams of input data.
- EPSS 43.68%
- Veröffentlicht 09.03.2006 13:06:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The (1) sgetstr and (2) getint functions in Sauerbraten 2006_02_28, as derived from the Cube engine, allow remote attackers to cause a denial of service (segmentation fault) via long streams of input data that trigger an out-of-bounds read, as demons...
- EPSS 21.17%
- Veröffentlicht 09.03.2006 13:06:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Sauerbraten 2006_02_28, as derived from the Cube engine, allows remote attackers to cause a denial of service (client exit) by forcing the server to change to a map (ogz) file whose name contains ".." sequences and has a certain length that prevents ...
- EPSS 6.01%
- Veröffentlicht 09.03.2006 13:06:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
engine/server.cpp in Sauerbraten 2006_02_28, as derived from the Cube engine, allows remote attackers to cause a denial of service (segmentation fault) via a client that does not completely join the game and times out, which results in a null pointer...