Alien Arena safe_cprintf format string

alien-safe-cprintf-format-string (25199) The risk level is classified as HighHigh Risk

Description:

Alien Arena 2006 Gold Edition could allow a remote attacker to execute arbitrary commands, caused by a format string vulnerability in the safe_cprintf function in acebot_cmds.c. A remote attacker could exploit this vulnerability by sending specially-crafted game server messages to Alien Arena 2006 clients, which would allow the attacker to execute arbitrary commands on vulnerable client systems.

Platforms Affected:

  • Red Planet Arena, Alien Arena 2006 Gold Edition 5.00

Remedy:

No remedy available as of July 4, 2009.

Consequences:

Gain Access

References:

  • Full-Disclosure Mailing List, Tue Mar 07 2006 - 11:48:01 CST , Multiple vulnerabilities in Alien Arena 2006 GE 5.00 at http://archives.neohapsis.com/archives/fulldisclosure/2006-03/0147.html.
  • Red Planet Arena Web site, Red Planel Arena at http://red.planetarena.org/.
  • BID-17028: Alien Arena 2006 GE Multiple Remote Vulnerabilities
  • CVE-2006-1145: Format string vulnerability in the safe_cprintf function in acebot_cmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers (possibly authenticated) to execute arbitrary code via unspecified vectors when the server sends crafted messages to the clients.
  • OSVDB ID: 23747: Alien Arena 2006 Gold Edition acebot_cmds.c safe_cprintf() Function Format String
  • SA19144: Alien Arena 2006 Gold Edition Multiple Vulnerabilities
  • VUPEN/ADV-2006-0882: Alien Arena 2006 Gold Edition Multiple Remote Code Execution Vulnerabilities

Reported:

Mar 07, 2006

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page