Sinnull

**Name of the Vulnerable Software and Affected Versions** Lithium II mod version 1.24 for Quake 2 **Description** The issue allows remote attackers to cause a denial of service, potentially leading to a server crash, and may also enable the execution of arbitrary code. This is achieved through the use of format string specifiers in the `nickname`. **Recommendations** For Lithium II mod version 1.24, consider restricting or validating user input for the `nickname` field to prevent the use of malicious format string specifiers until a patch is available.