CVE-2006-3324

Source
https://cve.org/CVERecord?id=CVE-2006-3324
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2006-3324.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2006-3324
Downstream
Published
2006-06-30T23:05:00Z
Modified
2026-04-10T03:37:36.377708Z
Summary
[none]
Details

The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine (ioquake3) before revision 804 allows remote attackers to overwrite arbitrary files in the quake3 directory (fs_homepath cvar) via a long string of filenames, as contained in the neededpaks buffer.

References

Affected packages