CVE-2011-1412 - Vulnerability Details - OpenCVE

sys/sys_unix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0.8.x-15 and 0.8.x-16, allows remote game servers to execute arbitrary commands via shell metacharacters in a long fs_game variable.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ioquake3	Ioquake3 Engine
Linux	Linux Kernel
Openarena	Openarena
Worldofpadman	World Of Padman

Configuration 1 [-]

AND

OR	cpe:2.3:a:ioquake3:ioquake3_engine::::::::
	cpe:2.3:a:openarena:openarena:0.8.x-15:::::::*
	cpe:2.3:a:openarena:openarena:0.8.x-16:::::::*
	cpe:2.3:a:worldofpadman:world_of_padman:1.5:::::::*

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://archives.neohapsis.com/archives/fulldisclosure/2011-07/0338.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063460.html
http://secunia.com/advisories/45417
http://secunia.com/advisories/45468
http://securityreason.com/securityalert/8324
http://svn.icculus.org/quake3?view=rev&revision=2097
http://thilo.tjps.eu/download/patches/ioq3-svn-r2097.diff
http://worldofpadman.com/website/news/en/article/266/wop-1-5-1-1-hotfix-released-for-linux.html
http://www.osvdb.org/74137
http://www.securityfocus.com/archive/1/519051/100/0/threaded
http://www.securityfocus.com/bid/48915
https://bugzilla.redhat.com/show_bug.cgi?id=725951
https://exchange.xforce.ibmcloud.com/vulnerabilities/68869
https://security.gentoo.org/glsa/201706-23

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2011-08-04T01:00:00

Updated: 2024-08-06T22:28:40.785Z

Reserved: 2011-03-10T00:00:00

Link: CVE-2011-1412

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2011-08-04T02:45:32.247

Modified: 2025-04-11T00:51:21.963

Link: CVE-2011-1412

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-07-28T00:00:00", "descriptions": [{"lang": "en", "value": "sys/sys_unix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0.8.x-15 and 0.8.x-16, allows remote game servers to execute arbitrary commands via shell metacharacters in a long fs_game variable."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-09T18:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20110728 Two security issues fixed in ioQuake3 engine", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-07/0338.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://svn.icculus.org/quake3?view=rev&revision=2097"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://thilo.tjps.eu/download/patches/ioq3-svn-r2097.diff"}, {"name": "45468", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/45468"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://worldofpadman.com/website/news/en/article/266/wop-1-5-1-1-hotfix-released-for-linux.html"}, {"name": "ioquake-idtech-command-execution(68869)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68869"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=725951"}, {"name": "74137", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/74137"}, {"name": "48915", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/48915"}, {"name": "20110728 Two security issues fixed in ioQuake3 engine", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/519051/100/0/threaded"}, {"name": "8324", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/8324"}, {"name": "GLSA-201706-23", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201706-23"}, {"name": "45417", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/45417"}, {"name": "FEDORA-2011-9898", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063460.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-1412", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "sys/sys_unix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0.8.x-15 and 0.8.x-16, allows remote game servers to execute arbitrary commands via shell metacharacters in a long fs_game variable."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20110728 Two security issues fixed in ioQuake3 engine", "refsource": "FULLDISC", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-07/0338.html"}, {"name": "http://svn.icculus.org/quake3?view=rev&revision=2097", "refsource": "CONFIRM", "url": "http://svn.icculus.org/quake3?view=rev&revision=2097"}, {"name": "http://thilo.tjps.eu/download/patches/ioq3-svn-r2097.diff", "refsource": "CONFIRM", "url": "http://thilo.tjps.eu/download/patches/ioq3-svn-r2097.diff"}, {"name": "45468", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/45468"}, {"name": "http://worldofpadman.com/website/news/en/article/266/wop-1-5-1-1-hotfix-released-for-linux.html", "refsource": "CONFIRM", "url": "http://worldofpadman.com/website/news/en/article/266/wop-1-5-1-1-hotfix-released-for-linux.html"}, {"name": "ioquake-idtech-command-execution(68869)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68869"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=725951", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=725951"}, {"name": "74137", "refsource": "OSVDB", "url": "http://www.osvdb.org/74137"}, {"name": "48915", "refsource": "BID", "url": "http://www.securityfocus.com/bid/48915"}, {"name": "20110728 Two security issues fixed in ioQuake3 engine", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/519051/100/0/threaded"}, {"name": "8324", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/8324"}, {"name": "GLSA-201706-23", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201706-23"}, {"name": "45417", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/45417"}, {"name": "FEDORA-2011-9898", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063460.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T22:28:40.785Z"}, "title": "CVE Program Container", "references": [{"name": "20110728 Two security issues fixed in ioQuake3 engine", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-07/0338.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://svn.icculus.org/quake3?view=rev&revision=2097"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://thilo.tjps.eu/download/patches/ioq3-svn-r2097.diff"}, {"name": "45468", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/45468"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://worldofpadman.com/website/news/en/article/266/wop-1-5-1-1-hotfix-released-for-linux.html"}, {"name": "ioquake-idtech-command-execution(68869)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68869"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=725951"}, {"name": "74137", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/74137"}, {"name": "48915", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/48915"}, {"name": "20110728 Two security issues fixed in ioQuake3 engine", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/519051/100/0/threaded"}, {"name": "8324", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/8324"}, {"name": "GLSA-201706-23", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "https://security.gentoo.org/glsa/201706-23"}, {"name": "45417", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/45417"}, {"name": "FEDORA-2011-9898", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063460.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-1412", "datePublished": "2011-08-04T01:00:00", "dateReserved": "2011-03-10T00:00:00", "dateUpdated": "2024-08-06T22:28:40.785Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ioquake3:ioquake3_engine:*:*:*:*:*:*:*:*", "matchCriteriaId": "14B7EA4D-BA81-4637-BA3F-E899DD6F4FED", "vulnerable": true}, {"criteria": "cpe:2.3:a:openarena:openarena:0.8.x-15:*:*:*:*:*:*:*", "matchCriteriaId": "307B2EEC-12CE-47C6-95F4-7A6DF02BBDC3", "vulnerable": true}, {"criteria": "cpe:2.3:a:openarena:openarena:0.8.x-16:*:*:*:*:*:*:*", "matchCriteriaId": "500E2686-45B7-4290-8CA5-270F74EEE856", "vulnerable": true}, {"criteria": "cpe:2.3:a:worldofpadman:world_of_padman:1.5:*:*:*:*:*:*:*", "matchCriteriaId": "CE1C1FBA-3A87-4AEF-BEF5-D0B9BE6EAEE6", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "sys/sys_unix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0.8.x-15 and 0.8.x-16, allows remote game servers to execute arbitrary commands via shell metacharacters in a long fs_game variable."}, {"lang": "es", "value": "sys/sys_unix.c del motor ioQuake3 en Unix y Linux, tal como se usa en World of Padman 1.5.x anteriores a 1.5.1.1 y OpenArena 0.8.x-15 y 0.8.x-16, permite a servidores del juego remotos ejecutar comandos arbitrarios a trav\u00e9s de meta-caracteres de shell en una variable extensa fs_game."}], "id": "CVE-2011-1412", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-08-04T02:45:32.247", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-07/0338.html"}, {"source": "cve@mitre.org", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063460.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/45417"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/45468"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/8324"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://svn.icculus.org/quake3?view=rev&revision=2097"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://thilo.tjps.eu/download/patches/ioq3-svn-r2097.diff"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://worldofpadman.com/website/news/en/article/266/wop-1-5-1-1-hotfix-released-for-linux.html"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/74137"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/519051/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/48915"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=725951"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68869"}, {"source": "cve@mitre.org", "url": "https://security.gentoo.org/glsa/201706-23"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2011-07/0338.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063460.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/45417"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/45468"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/8324"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://svn.icculus.org/quake3?view=rev&revision=2097"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://thilo.tjps.eu/download/patches/ioq3-svn-r2097.diff"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://worldofpadman.com/website/news/en/article/266/wop-1-5-1-1-hotfix-released-for-linux.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/74137"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/519051/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/48915"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=725951"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/68869"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.gentoo.org/glsa/201706-23"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}