ioquake/jedi-academy
0
0
Fork 0
mirror of https://github.com/ioquake/jedi-academy.git synced 2024-11-25 13:41:34 +00:00
Code Issues Projects Releases Packages Wiki Activity
jedi-academy/codemp/game
History
Jonathan Gray 8550620849 CVE-2006-3325 arbitrary cvar overwrite 
CVE-2006-3325
client/cl_parse.c in the id3 Quake 3 Engine 1.32c and the Icculus
Quake 3 Engine (ioquake3) revision 810 and earlier allows remote
malicious servers to overwrite arbitrary write-protected cvars
variables on the client, such as cl_allowdownload for Automatic
Downloading and fs_homepath for the quake3 path, via a string of cvar
names and values sent from the server. NOTE: this can be combined with
another vulnerability to overwrite arbitrary files.

Luigi Auriemma q3cfilevar

from Thilo Schulz in ioquake3
svn 811 git 7d51d75b05a9593508040162709043516c0f2a17

- Fix arbitrary cvar overwrite flaw: http://aluigi.altervista.org/adv.htm
2013-05-07 22:18:55 +10:00
..
ai.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
ai_main.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
ai_main.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
ai_util.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
ai_wpnav.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
AnimalNPC.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
anims.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
asm2mak.cfg Jedi Academy Release 2013-04-04 17:35:38 -05:00
b_local.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
b_public.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
be_aas.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
be_ai_char.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
be_ai_chat.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
be_ai_gen.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
be_ai_goal.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
be_ai_move.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
be_ai_weap.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
be_ea.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_g2_utils.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_lib.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_lib.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_local.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_misc.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_panimate.c stricmp -> Q_stricmp 2013-04-25 23:51:55 +10:00
bg_pmove.c avoid redefining typedefs which is allowed in c++ but not c99 2013-04-26 22:27:23 +10:00
bg_public.h remove the use of 'typedef enum' without an indentifier 2013-05-02 13:47:50 +10:00
bg_saber.c fix slashes in include paths 2013-04-23 15:40:23 +10:00
bg_saberLoad.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_saga.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_saga.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_slidemove.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_strap.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_vehicleLoad.c fix slashes in include paths 2013-04-23 15:40:23 +10:00
bg_vehicles.h remove the use of 'typedef enum' without an indentifier 2013-05-02 13:47:50 +10:00
bg_weapons.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
bg_weapons.h remove the use of 'typedef enum' without an indentifier 2013-05-02 13:47:50 +10:00
botlib.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
chars.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
FighterNPC.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_active.c remove the use of 'typedef enum' without an indentifier 2013-05-02 13:47:50 +10:00
g_arenas.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_bot.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_client.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_cmds.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_combat.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_exphysics.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_headers.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_ICARUScb.c vsprintf -> Q_vsnprintf 2013-05-07 22:18:45 +10:00
g_ICARUScb.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_items.c stricmp -> Q_stricmp 2013-04-25 23:51:55 +10:00
g_local.h remove the use of 'typedef enum' without an indentifier 2013-05-02 13:47:50 +10:00
g_log.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_main.c CVE-2005-0984 Buffer overflow in the G_Printf function 2013-05-07 22:18:45 +10:00
g_mem.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_misc.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_missile.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_mover.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_nav.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_nav.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_navnew.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_object.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_public.h avoid redefining typedefs which is allowed in c++ but not c99 2013-04-26 22:27:23 +10:00
g_saga.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_session.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_spawn.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_strap.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_svcmds.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_syscalls.c don't try to compile c files as c++ 2013-04-26 22:27:22 +10:00
g_target.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_team.c vsprintf -> Q_vsnprintf 2013-05-07 22:18:45 +10:00
g_team.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_timer.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_trigger.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_turret.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_turret_G2.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_utils.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_vehicles.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_vehicleTurret.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
g_weapon.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
game.bat Jedi Academy Release 2013-04-04 17:35:38 -05:00
game.q3asm Jedi Academy Release 2013-04-04 17:35:38 -05:00
inv.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
JK2_game.def Jedi Academy Release 2013-04-04 17:35:38 -05:00
JK2_game.vcproj Jedi Academy Release 2013-04-04 17:35:38 -05:00
match.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Atst.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Default.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Droid.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_GalakMech.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Grenadier.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Howler.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_ImperialProbe.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Interrogator.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Jedi.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Mark1.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Mark2.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_MineMonster.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Rancor.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Remote.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Seeker.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Sentry.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Sniper.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Stormtrooper.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Utils.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_AI_Wampa.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_behavior.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_combat.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_goal.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
npc_headers.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_misc.c vsprintf -> Q_vsnprintf 2013-05-07 22:18:45 +10:00
NPC_move.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_reactions.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_senses.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_sounds.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_spawn.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_stats.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
NPC_utils.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
q_math.c powf -> Q_powf 2013-04-25 23:51:57 +10:00
q_shared.c vsprintf -> Q_vsnprintf 2013-05-07 22:18:45 +10:00
q_shared.h CVE-2006-3325 arbitrary cvar overwrite 2013-05-07 22:18:55 +10:00
say.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
SpeederNPC.c fix slashes in include paths 2013-04-23 15:40:23 +10:00
surfaceflags.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
syn.h ditch dos style newlines 2013-04-23 15:21:39 +10:00
teams.h remove the use of 'typedef enum' without an indentifier 2013-05-02 13:47:50 +10:00
tri_coll_test.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
w_force.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
w_saber.c ditch dos style newlines 2013-04-23 15:21:39 +10:00
w_saber.h remove the use of 'typedef enum' without an indentifier 2013-05-02 13:47:50 +10:00
WalkerNPC.c ditch dos style newlines 2013-04-23 15:21:39 +10:00