CVE-2006-1101

The (1) sgetstr and (2) getint functions in Sauerbraten 2006_02_28, as derived from the Cube engine, allow remote attackers to cause a denial of service (segmentation fault) via long streams of input data that trigger an out-of-bounds read, as demonstrated using SV_EXT tag data in the Cube engine, which is not properly handled by getint.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:sauerbraten:cube:2005-08-09:*:*:*:*:*:*:*
cpe:2.3:a:sauerbraten:sauerbraten:2006-02-28:*:*:*:*:*:*:*

History

No history.

Information

Published : 2006-03-09 13:06

Updated : 2024-02-28 10:42


NVD link : CVE-2006-1101

Mitre link : CVE-2006-1101

CVE.ORG link : CVE-2006-1101


JSON object : View

Products Affected

sauerbraten

  • sauerbraten
  • cube