CVE-2010-5077

server/sv_main.c in Quake3 Arena, as used in ioquake3 before r1762, OpenArena, Tremulous, and other products, allows remote attackers to cause a denial of service (network traffic amplification) via a spoofed (1) getstatus or (2) rcon request.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ioquake3:ioquake3_engine:*:*:*:*:*:*:*:*
cpe:2.3:a:openarena:openarena:*:*:*:*:*:*:*:*
cpe:2.3:a:tremulous:tremulous:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-10-27 20:55

Updated : 2024-02-04 18:35


NVD link : CVE-2010-5077

Mitre link : CVE-2010-5077

CVE.ORG link : CVE-2010-5077


JSON object : View

Products Affected

openarena

  • openarena

ioquake3

  • ioquake3_engine

tremulous

  • tremulous
CWE
CWE-20

Improper Input Validation