CVE-2006-3849 - Vulnerability Details - OpenCVE

Stack-based buffer overflow in Warzone 2100 and Warzone Resurrection 2.0.3 and earlier allows remote attackers to execute arbitrary code via a (1) long message handled by the recvTextMessage function in multiplay.c or a (2) long filename handled by NETrecvFile function in netplay/netplay.c.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Pumpkin Studios	Warzone Warzone Resurrection

Configuration 1 [-]

OR	cpe:2.3:a:pumpkin_studios:warzone:2100:::::::*
	cpe:2.3:a:pumpkin_studios:warzone_resurrection:2.0.3:::::::*

No data.

References

Link	Providers
http://aluigi.altervista.org/adv/warzonebof-adv.txt
http://secunia.com/advisories/21474
http://securityreason.com/securityalert/1283
http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml
http://www.securityfocus.com/archive/1/441039/100/0/threaded
http://www.securityfocus.com/bid/19118
http://www.vupen.com/english/advisories/2006/2943
https://exchange.xforce.ibmcloud.com/vulnerabilities/27910
https://exchange.xforce.ibmcloud.com/vulnerabilities/27915

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-07-25T23:00:00

Updated: 2024-08-07T18:48:39.243Z

Reserved: 2006-07-25T00:00:00

Link: CVE-2006-3849

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2006-07-25T23:04:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2006-3849

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-07-23T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in Warzone 2100 and Warzone Resurrection 2.0.3 and earlier allows remote attackers to execute arbitrary code via a (1) long message handled by the recvTextMessage function in multiplay.c or a (2) long filename handled by NETrecvFile function in netplay/netplay.c."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://aluigi.altervista.org/adv/warzonebof-adv.txt"}, {"name": "warzone-recvtextmessage-bo(27910)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27910"}, {"name": "ADV-2006-2943", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2943"}, {"name": "20060723 Buffer-overflow in recvTextMessage and NETrecvFile in Warzone Resurrection 2.0.3 (SVN 127)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/441039/100/0/threaded"}, {"name": "1283", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/1283"}, {"name": "21474", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21474"}, {"name": "warzone-netrecvfile-bo(27915)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27915"}, {"name": "19118", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/19118"}, {"name": "GLSA-200608-16", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2006-3849", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in Warzone 2100 and Warzone Resurrection 2.0.3 and earlier allows remote attackers to execute arbitrary code via a (1) long message handled by the recvTextMessage function in multiplay.c or a (2) long filename handled by NETrecvFile function in netplay/netplay.c."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://aluigi.altervista.org/adv/warzonebof-adv.txt", "refsource": "MISC", "url": "http://aluigi.altervista.org/adv/warzonebof-adv.txt"}, {"name": "warzone-recvtextmessage-bo(27910)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27910"}, {"name": "ADV-2006-2943", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2943"}, {"name": "20060723 Buffer-overflow in recvTextMessage and NETrecvFile in Warzone Resurrection 2.0.3 (SVN 127)", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/441039/100/0/threaded"}, {"name": "1283", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/1283"}, {"name": "21474", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21474"}, {"name": "warzone-netrecvfile-bo(27915)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27915"}, {"name": "19118", "refsource": "BID", "url": "http://www.securityfocus.com/bid/19118"}, {"name": "GLSA-200608-16", "refsource": "GENTOO", "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:48:39.243Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://aluigi.altervista.org/adv/warzonebof-adv.txt"}, {"name": "warzone-recvtextmessage-bo(27910)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27910"}, {"name": "ADV-2006-2943", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2943"}, {"name": "20060723 Buffer-overflow in recvTextMessage and NETrecvFile in Warzone Resurrection 2.0.3 (SVN 127)", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/441039/100/0/threaded"}, {"name": "1283", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/1283"}, {"name": "21474", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21474"}, {"name": "warzone-netrecvfile-bo(27915)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27915"}, {"name": "19118", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/19118"}, {"name": "GLSA-200608-16", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-3849", "datePublished": "2006-07-25T23:00:00", "dateReserved": "2006-07-25T00:00:00", "dateUpdated": "2024-08-07T18:48:39.243Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:pumpkin_studios:warzone:2100:*:*:*:*:*:*:*", "matchCriteriaId": "44FA76C5-2A9C-4667-A806-0AAC82B346B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:pumpkin_studios:warzone_resurrection:2.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "49722924-F42D-458B-93FC-FA09E824B9F5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in Warzone 2100 and Warzone Resurrection 2.0.3 and earlier allows remote attackers to execute arbitrary code via a (1) long message handled by the recvTextMessage function in multiplay.c or a (2) long filename handled by NETrecvFile function in netplay/netplay.c."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en Warzone 2100 y Warzone Resurrection 2.0.3 y anteriores permiten a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un mensaje (1) long manejado por la funci\u00f3n recvTextMessage en multiplay.c o un (2) manejador de nombre de fichero por la funci\u00f3n NETrecvFile en netplay/netplay.c."}], "id": "CVE-2006-3849", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "[email protected]", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-07-25T23:04:00.000", "references": [{"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "http://aluigi.altervista.org/adv/warzonebof-adv.txt"}, {"source": "[email protected]", "url": "http://secunia.com/advisories/21474"}, {"source": "[email protected]", "url": "http://securityreason.com/securityalert/1283"}, {"source": "[email protected]", "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml"}, {"source": "[email protected]", "url": "http://www.securityfocus.com/archive/1/441039/100/0/threaded"}, {"source": "[email protected]", "url": "http://www.securityfocus.com/bid/19118"}, {"source": "[email protected]", "url": "http://www.vupen.com/english/advisories/2006/2943"}, {"source": "[email protected]", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27910"}, {"source": "[email protected]", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27915"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://aluigi.altervista.org/adv/warzonebof-adv.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/21474"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/1283"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/441039/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/19118"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/2943"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27910"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27915"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "[email protected]", "type": "Primary"}]}