server/sv_main.c in Quake3 Arena, as used in ioquake3 before r1762, OpenArena, Tremulous, and other products, allows remote attackers to cause a denial of service (network traffic amplification) via a spoofed (1) getstatus or (2) rcon request.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2014-10-27 20:55
Updated : 2024-02-04 18:35
NVD link : CVE-2010-5077
Mitre link : CVE-2010-5077
CVE.ORG link : CVE-2010-5077
JSON object : View
Products Affected
openarena
- openarena
ioquake3
- ioquake3_engine
tremulous
- tremulous
CWE
CWE-20
Improper Input Validation