CVE-2006-3849 - Vulnerability Details - OpenCVE

Stack-based buffer overflow in Warzone 2100 and Warzone Resurrection 2.0.3 and earlier allows remote attackers to execute arbitrary code via a (1) long message handled by the recvTextMessage function in multiplay.c or a (2) long filename handled by NETrecvFile function in netplay/netplay.c.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.04874.

Key SSVC decision points have not yet been added.

Vendors	Products
Pumpkin Studios	Warzone Warzone Resurrection

Configuration 1 [-]

OR	cpe:2.3:a:pumpkin_studios:warzone:2100:::::::*
	cpe:2.3:a:pumpkin_studios:warzone_resurrection:2.0.3:::::::*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2006-3843	Stack-based buffer overflow in Warzone 2100 and Warzone Resurrection 2.0.3 and earlier allows remote attackers to execute arbitrary code via a (1) long message handled by the recvTextMessage function in multiplay.c or a (2) long filename handled by NETrecvFile function in netplay/netplay.c.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://aluigi.altervista.org/adv/warzonebof-adv.txt
http://secunia.com/advisories/21474
http://securityreason.com/securityalert/1283
http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml
http://www.securityfocus.com/archive/1/441039/100/0/threaded
http://www.securityfocus.com/bid/19118
http://www.vupen.com/english/advisories/2006/2943
https://exchange.xforce.ibmcloud.com/vulnerabilities/27910
https://exchange.xforce.ibmcloud.com/vulnerabilities/27915

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-07-25T23:00:00

Updated: 2024-08-07T18:48:39.243Z

Reserved: 2006-07-25T00:00:00

Link: CVE-2006-3849

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2006-07-25T23:04:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2006-3849

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-07-23T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in Warzone 2100 and Warzone Resurrection 2.0.3 and earlier allows remote attackers to execute arbitrary code via a (1) long message handled by the recvTextMessage function in multiplay.c or a (2) long filename handled by NETrecvFile function in netplay/netplay.c."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://aluigi.altervista.org/adv/warzonebof-adv.txt"}, {"name": "warzone-recvtextmessage-bo(27910)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27910"}, {"name": "ADV-2006-2943", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2943"}, {"name": "20060723 Buffer-overflow in recvTextMessage and NETrecvFile in Warzone Resurrection 2.0.3 (SVN 127)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/441039/100/0/threaded"}, {"name": "1283", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/1283"}, {"name": "21474", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21474"}, {"name": "warzone-netrecvfile-bo(27915)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27915"}, {"name": "19118", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/19118"}, {"name": "GLSA-200608-16", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-3849", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in Warzone 2100 and Warzone Resurrection 2.0.3 and earlier allows remote attackers to execute arbitrary code via a (1) long message handled by the recvTextMessage function in multiplay.c or a (2) long filename handled by NETrecvFile function in netplay/netplay.c."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://aluigi.altervista.org/adv/warzonebof-adv.txt", "refsource": "MISC", "url": "http://aluigi.altervista.org/adv/warzonebof-adv.txt"}, {"name": "warzone-recvtextmessage-bo(27910)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27910"}, {"name": "ADV-2006-2943", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2943"}, {"name": "20060723 Buffer-overflow in recvTextMessage and NETrecvFile in Warzone Resurrection 2.0.3 (SVN 127)", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/441039/100/0/threaded"}, {"name": "1283", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/1283"}, {"name": "21474", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21474"}, {"name": "warzone-netrecvfile-bo(27915)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27915"}, {"name": "19118", "refsource": "BID", "url": "http://www.securityfocus.com/bid/19118"}, {"name": "GLSA-200608-16", "refsource": "GENTOO", "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:48:39.243Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://aluigi.altervista.org/adv/warzonebof-adv.txt"}, {"name": "warzone-recvtextmessage-bo(27910)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27910"}, {"name": "ADV-2006-2943", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2943"}, {"name": "20060723 Buffer-overflow in recvTextMessage and NETrecvFile in Warzone Resurrection 2.0.3 (SVN 127)", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/441039/100/0/threaded"}, {"name": "1283", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/1283"}, {"name": "21474", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21474"}, {"name": "warzone-netrecvfile-bo(27915)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27915"}, {"name": "19118", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/19118"}, {"name": "GLSA-200608-16", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-3849", "datePublished": "2006-07-25T23:00:00", "dateReserved": "2006-07-25T00:00:00", "dateUpdated": "2024-08-07T18:48:39.243Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:pumpkin_studios:warzone:2100:*:*:*:*:*:*:*", "matchCriteriaId": "44FA76C5-2A9C-4667-A806-0AAC82B346B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:pumpkin_studios:warzone_resurrection:2.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "49722924-F42D-458B-93FC-FA09E824B9F5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in Warzone 2100 and Warzone Resurrection 2.0.3 and earlier allows remote attackers to execute arbitrary code via a (1) long message handled by the recvTextMessage function in multiplay.c or a (2) long filename handled by NETrecvFile function in netplay/netplay.c."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en Warzone 2100 y Warzone Resurrection 2.0.3 y anteriores permiten a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un mensaje (1) long manejado por la funci\u00f3n recvTextMessage en multiplay.c o un (2) manejador de nombre de fichero por la funci\u00f3n NETrecvFile en netplay/netplay.c."}], "id": "CVE-2006-3849", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-07-25T23:04:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://aluigi.altervista.org/adv/warzonebof-adv.txt"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/21474"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/1283"}, {"source": "cve@mitre.org", "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/441039/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/19118"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2943"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27910"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27915"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://aluigi.altervista.org/adv/warzonebof-adv.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/21474"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/1283"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-16.xml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/441039/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/19118"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/2943"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27910"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27915"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}