CVE-2006-2236

Buffer overflow in the Quake 3 Engine, as used by (1) ET 2.60, (2) Return to Castle Wolfenstein 1.41, and (3) Quake III Arena 1.32b allows remote attackers to execute arbitrary commands via a long remapShader command.

Published: May 9, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-2236
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.6
AV:N/AC:H/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
id_software / return_to_castle_wolfenstein	1.41	1.41.x
id_software / wolfenstein_enemy_territory	2.60	2.60.x
id_software / quake_3_arena	1.32b	1.32b.x
id_software / quake_3_engine	1.32b	1.32b.x

http://secunia.com/advisories/19984
http://secunia.com/advisories/20065
http://www.gentoo.org/security/en/glsa/glsa-200605-12.xml
http://www.osvdb.org/25279
http://www.securityfocus.com/archive/1/433349/100/0/threaded
http://www.securityfocus.com/bid/17857
http://www.vupen.com/english/advisories/2006/1676
https://exchange.xforce.ibmcloud.com/vulnerabilities/26264
https://www.exploit-db.com/exploits/1750

Vulnerability Database

CVE-2006-2236