CVE-2006-3325

Description

client/cl_parse.c in the id3 Quake 3 Engine 1.32c and the Icculus Quake 3 Engine (ioquake3) revision 810 and earlier allows remote malicious servers to overwrite arbitrary write-protected cvars variables on the client, such as cl_allowdownload for Automatic Downloading and fs_homepath for the quake3 path, via a string of cvar names and values sent from the server. NOTE: this can be combined with another vulnerability to overwrite arbitrary files.

How to fix CVE-2006-3325

To remediate CVE-2006-3325, upgrade the affected package to a fixed version below.

• Debian/ioquake3—upgrade to 1.36+svn1788j-1 or later

Is CVE-2006-3325 being exploited?

Low — EPSS is 3.9%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 1.36+svn1788j-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2006-3325