---------------------------------------------------------------------- Want to join the Secunia Security Team? Secunia offers a position as a security specialist, where your daily work involves reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerability reports. http://secunia.com/secunia_security_specialist/ ---------------------------------------------------------------------- TITLE: Icculus.org Quake3 Engine Two Vulnerabilities SECUNIA ADVISORY ID: SA20851 VERIFY ADVISORY: http://secunia.com/advisories/20851/ CRITICAL: Moderately critical IMPACT: Security Bypass, DoS, System access WHERE: >From remote SOFTWARE: Icculus.org Quake3 Engine (ioquake3) http://secunia.com/product/10665/ DESCRIPTION: Luigi Auriemma has reported two vulnerabilities in Icculus.org Quake3, which can be exploited by malicious people to bypass certain security restrictions, cause a DoS (Denial of Service), and potentially to compromise a user's system. 1) An error exists within the Automatic Downloading functionality when handling filenames of PK3 files sent by the server. For more information see #2 in: SA20401 2) An error exists within the client when handling the list of cvar variables sent from a server. For more information see #3 in: SA20401 The vulnerabilities have been reported in revision 803. Prior versions may also be affected. SOLUTION: Vulnerability #1 has been fixed in revision 804 in the CVS repositories. http://svn.icculus.org/quake3?rev=804&view=rev PROVIDED AND/OR DISCOVERED BY: Luigi Auriemma ORIGINAL ADVISORY: http://aluigi.altervista.org/adv/q3cfilevar-adv.txt http://svn.icculus.org/quake3?rev=804&view=rev OTHER REFERENCES: SA20401: http://secunia.com/advisories/20401/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------