PT-2006-2412 · Id · Csdoom

Nightfang

Published

2006-03-28

Updated

2017-07-20

CVE-2006-1403

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions csDoom versions 0.7 and earlier

Description The issue is related to a format string vulnerability in the PrintString function. This vulnerability allows remote attackers to cause a denial of service and possibly execute arbitrary commands via format string specifiers in strings passed to the console.

Recommendations For csDoom versions 0.7 and earlier, consider disabling the PrintString function in c console.cpp as a temporary workaround until a patch is available. Restrict access to the console to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-1403

Affected Products

Csdoom

PT-2006-2412 · Id · Csdoom

CVE-2006-1403

Related Identifiers

Affected Products

References · 7