Vulnerability Description
Format string vulnerability in the safe_cprintf function in acebot_cmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers (possibly authenticated) to execute arbitrary code via unspecified vectors when the server sends crafted messages to the clients.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cor Entertainment | Alien Arena 2006 | gold_5.00 |
References
- http://aluigi.altervista.org/adv/aa2k6x-adv.txtExploitVendor Advisory
- http://archives.neohapsis.com/archives/fulldisclosure/2006-03/0147.html
- http://secunia.com/advisories/19144Vendor Advisory
- http://www.osvdb.org/23747
- http://www.securityfocus.com/archive/1/426984/100/0/threaded
- http://www.securityfocus.com/bid/17028
- http://www.vupen.com/english/advisories/2006/0882
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25199
- http://aluigi.altervista.org/adv/aa2k6x-adv.txtExploitVendor Advisory
- http://archives.neohapsis.com/archives/fulldisclosure/2006-03/0147.html
- http://secunia.com/advisories/19144Vendor Advisory
- http://www.osvdb.org/23747
- http://www.securityfocus.com/archive/1/426984/100/0/threaded
- http://www.securityfocus.com/bid/17028
- http://www.vupen.com/english/advisories/2006/0882
FAQ
What is CVE-2006-1145?
CVE-2006-1145 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Format string vulnerability in the safe_cprintf function in acebot_cmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers (possibly authenticated) to execute arbitrary code via unspecifi...
How severe is CVE-2006-1145?
CVE-2006-1145 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1145?
Check the references section above for vendor advisories and patch information. Affected products include: Cor Entertainment Alien Arena 2006.