PT-2006-3484 · Openbor Team+1 · Openbor+2
Luigi Auriemma
·
Published
2006-05-22
·
Updated
2017-07-20
·
CVE-2006-2537
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
OpenBOR versions 2.0046 and earlier
Beats of Rage (BOR) versions 1.0029 and earlier
Horizontal Shooter BOR (HOR) versions 2.0000 and earlier
Description
The issue allows remote attackers to execute code via format string specifiers in configurations used in various mod files. This is demonstrated by the
music identifier in "data/scenes/intro.txt", which is not properly handled in the update function, and the background identifier in "data/easy/1aeasy.txt", which is not properly handled in the shutdown function.Recommendations
For OpenBOR versions 2.0046 and earlier, update to a version that properly handles format string specifiers in configurations.
For Beats of Rage (BOR) versions 1.0029 and earlier, update to a version that properly handles format string specifiers in configurations.
For Horizontal Shooter BOR (HOR) versions 2.0000 and earlier, update to a version that properly handles format string specifiers in configurations.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Beats Of Rage
Horizontal Shooter Bor
Openbor