The (1) sgetstr and (2) getint functions in Sauerbraten 2006_02_28, as derived from the Cube engine, allow remote attackers to cause a denial of service (segmentation fault) via long streams of input data that trigger an out-of-bounds read, as demonstrated using SV_EXT tag data in the Cube engine, which is not properly handled by getint.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2006-03-09 13:06
Updated : 2024-02-28 10:42
NVD link : CVE-2006-1101
Mitre link : CVE-2006-1101
CVE.ORG link : CVE-2006-1101
JSON object : View
Products Affected
sauerbraten
- sauerbraten
- cube
CWE