← Back

Id Software

id_software

25 CVEs • 15 products

Products (15)

Click to collapse
Toggle
Quake 3 Engine
quake_3_engine
9 CVEs
Quake 3 Arena
quake_3_arena
4 CVEs
Quake Ii Server
quake_ii_server
4 CVEs
Quake
quake
3 CVEs
Wolfenstein Enemy Territory
wolfenstein_enemy_territory
2 CVEs
Quake 2i Server
quake_2i_server
1 CVE
Quake Ii Server Windows
quake_ii_server_windows
1 CVE
Quake Ii Server Linux
quake_ii_server_linux
1 CVE
Quake 3 Arena Server
quake_3_arena_server
1 CVE
Return To Castle Wolfenstein
return_to_castle_wolfenstein
1 CVE
Doom 3
doom_3
1 CVE
Quake 4
quake_4
1 CVE
Quake 2
quake_2
1 CVE
Quake 2 Server
quake_2_server
1 CVE
Quakeworld
quakeworld
1 CVE

CVEs (25)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2007-5248
2Id Software
Take2games
3Doom 3
PreyQuake 4
Apr 23, 2026
Oct 6, 2007
N/A· v4
N/A· v3
9.3 HIGH· v2
Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster (PB) is enabled, allow remote attackers t...Show more
Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster (PB) is enabled, allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in (1) a PB_Y packet to the YPG server or (2) a PB_U packet to UCON. NOTE: this issue might be in Punkbuster itself, but there are insufficient details to be certain.Show less
CVE-2006-3401
1Id Software
1Quake 3 Engine
Apr 16, 2026
Jul 6, 2006
N/A· v4
N/A· v3
7.5 HIGH· v2
Stack-based buffer overflow in Quake 3 Engine as used by Quake 3: Arena 1.32b and 1.32c allows remote attackers to cause a denial of service and possibly execute code via long CS_ITEMS values.
CVE-2006-3400
2Id Software
Raven Software
2Quake 3 Engine
Soldier Of Fortune 2
Apr 16, 2026
Jul 6, 2006
N/A· v4
N/A· v3
7.5 HIGH· v2
Stack-based buffer overflow in the CG_ServerCommand function in Quake 3 Engine as used by Soldier of Fortune 2 (SOF2MP) GOLD 1.03 allows remote attackers to cause a denial of service and possibly execute code by sending...Show more
Stack-based buffer overflow in the CG_ServerCommand function in Quake 3 Engine as used by Soldier of Fortune 2 (SOF2MP) GOLD 1.03 allows remote attackers to cause a denial of service and possibly execute code by sending a long command from the server.Show less
CVE-2006-3325
1Id Software
1Quake 3 Engine
Apr 16, 2026
Jun 30, 2006
N/A· v4
N/A· v3
5.0 MEDIUM· v2
client/cl_parse.c in the id3 Quake 3 Engine 1.32c and the Icculus Quake 3 Engine (ioquake3) revision 810 and earlier allows remote malicious servers to overwrite arbitrary write-protected cvars variables on the client, s...Show more
client/cl_parse.c in the id3 Quake 3 Engine 1.32c and the Icculus Quake 3 Engine (ioquake3) revision 810 and earlier allows remote malicious servers to overwrite arbitrary write-protected cvars variables on the client, such as cl_allowdownload for Automatic Downloading and fs_homepath for the quake3 path, via a string of cvar names and values sent from the server. NOTE: this can be combined with another vulnerability to overwrite arbitrary files.Show less
CVE-2006-3324
1Id Software
1Quake 3 Engine
Apr 16, 2026
Jun 30, 2006
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine (ioquake3) before revision 804 allows remote attackers to overwrite arbitrary files in the quake3 directory (fs_homepath cvar) via...Show more
The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine (ioquake3) before revision 804 allows remote attackers to overwrite arbitrary files in the quake3 directory (fs_homepath cvar) via a long string of filenames, as contained in the neededpaks buffer.Show less
CVE-2006-2875
1Id Software
1Quake 3 Engine
Apr 16, 2026
Jun 7, 2006
N/A· v4
N/A· v3
7.5 HIGH· v2
Stack-based buffer overflow in the CL_ParseDownload function of Quake 3 Engine 1.32c and earlier, as used in multiple products, allows remote attackers to execute arbitrary code via a svc_download command with compressed...Show more
Stack-based buffer overflow in the CL_ParseDownload function of Quake 3 Engine 1.32c and earlier, as used in multiple products, allows remote attackers to execute arbitrary code via a svc_download command with compressed data that triggers the overflow during expansion.Show less
CVE-2006-2082
1Id Software
1Quake 3 Engine
Apr 16, 2026
May 10, 2006
N/A· v4
N/A· v3
7.5 HIGH· v2
Directory traversal vulnerability in Quake 3 engine, as used in products including Quake3 Arena, Return to Castle Wolfenstein, Wolfenstein: Enemy Territory, and Star Trek Voyager: Elite Force, when the sv_allowdownload c...Show more
Directory traversal vulnerability in Quake 3 engine, as used in products including Quake3 Arena, Return to Castle Wolfenstein, Wolfenstein: Enemy Territory, and Star Trek Voyager: Elite Force, when the sv_allowdownload cvar is enabled, allows remote attackers to read arbitrary files from the server via ".." sequences in a .pk3 file request.Show less
CVE-2006-2236
1Id Software
4Quake 3 Arena
Quake 3 EngineReturn To Castle Wolfenstein+1 more
Apr 16, 2026
May 8, 2006
N/A· v4
N/A· v3
7.6 HIGH· v2
Buffer overflow in the Quake 3 Engine, as used by (1) ET 2.60, (2) Return to Castle Wolfenstein 1.41, and (3) Quake III Arena 1.32b allows remote attackers to execute arbitrary commands via a long remapShader command.
CVE-2005-0983
4Activision
Id SoftwareLucasarts+1 more
10Call Of Duty
Call Of Duty United OffensiveQuake 3 Arena+7 more
Apr 16, 2026
May 2, 2005
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Quake 3 engine, as used in multiple games, allows remote attackers to cause a denial of service (client disconnect) via a long message, which is not properly truncated and causes the engine to process the remaining data...Show more
Quake 3 engine, as used in multiple games, allows remote attackers to cause a denial of service (client disconnect) via a long message, which is not properly truncated and causes the engine to process the remaining data as if it were network data.Show less
CVE-2005-0430
1Id Software
1Quake 3 Engine
Apr 16, 2026
Feb 12, 2005
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The Quake 3 engine, as used in multiple game packages, allows remote attackers to cause a denial of service (shutdown game server) and possibly crash the server via a long infostring, possibly triggering a buffer overflo...Show more
The Quake 3 engine, as used in multiple game packages, allows remote attackers to cause a denial of service (shutdown game server) and possibly crash the server via a long infostring, possibly triggering a buffer overflow.Show less
CVE-2004-2597
1Id Software
1Quake Ii Server
Apr 16, 2026
Dec 31, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Quake II server before R1Q2, as used in multiple products, allows remote attackers to bypass IP-based access control rules via a userinfo string that already contains an "ip" key/value pair but is also long enough to cau...Show more
Quake II server before R1Q2, as used in multiple products, allows remote attackers to bypass IP-based access control rules via a userinfo string that already contains an "ip" key/value pair but is also long enough to cause a new key/value pair to be truncated, which interferes with the server's ability to find the client's IP address.Show less
CVE-2004-2596
1Id Software
1Quake Ii Server
Apr 16, 2026
Dec 31, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (exhaustion of connection slots) via a large number of connections from the same IP address.
CVE-2004-2595
1Id Software
1Quake Ii Server Linux
Apr 16, 2026
Dec 31, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Absolute path traversal vulnerability in Quake II server before R1Q2 on Linux, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a download command with a full pat...Show more
Absolute path traversal vulnerability in Quake II server before R1Q2 on Linux, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a download command with a full pathname for a directory in the argument, which causes the server to crash when it cannot read data.Show less
CVE-2004-2594
1Id Software
1Quake Ii Server Windows
Apr 16, 2026
Dec 31, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Absolute path traversal vulnerability in Quake II server before R1Q2 on Windows, as used in multiple products, allows remote attackers to read arbitrary files via a "\/" in a pathname argument, as demonstrated by "downlo...Show more
Absolute path traversal vulnerability in Quake II server before R1Q2 on Windows, as used in multiple products, allows remote attackers to read arbitrary files via a "\/" in a pathname argument, as demonstrated by "download \/server.cfg".Show less
CVE-2004-2593
1Id Software
1Quake Ii Server
Apr 16, 2026
Dec 31, 2004
N/A· v4
N/A· v3
7.5 HIGH· v2
Buffer overflow in command-packet processing of Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a packet wit...Show more
Buffer overflow in command-packet processing of Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a packet with a long cmd_args buffer.Show less
CVE-2004-2592
1Id Software
1Quake Ii Server
Apr 16, 2026
Dec 31, 2004
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a modified client that asks the server to send data stored at a negative array offse...Show more
Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a modified client that asks the server to send data stored at a negative array offset, which is not handled when processing Configstrings and Baselines.Show less
CVE-2002-0770
1Id Software
1Quake 2i Server
Apr 16, 2026
Aug 12, 2002
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Quake 2 (Q2) server 3.20 and 3.21 allows remote attackers to obtain sensitive server cvar variables, obtain directory listings, and execute Q2 server admin commands via a client that does not expand "$" macros, which cau...Show more
Quake 2 (Q2) server 3.20 and 3.21 allows remote attackers to obtain sensitive server cvar variables, obtain directory listings, and execute Q2 server admin commands via a client that does not expand "$" macros, which causes the server to expand the macros and leak the information, as demonstrated using "say $rcon_password."Show less
CVE-2001-1289
1Id Software
1Quake 3 Arena
Apr 16, 2026
Jul 29, 2001
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Quake 3 arena 1.29f and 1.29g allows remote attackers to cause a denial of service (crash) via a malformed connection packet that begins with several char-255 characters.
CVE-1999-1569
1Id Software
1Quake
Apr 16, 2026
Jul 17, 2001
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Quake 1 and NetQuake servers allow remote attackers to cause a denial of service (resource exhaustion or forced disconnection) via a flood of spoofed UDP connection packets, which exceeds the server's player limit.
CVE-2000-1080
2Id Software
J. P. Grossman
2Proquake
Quake
Apr 16, 2026
Nov 1, 2000
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Quake 1 (quake1) and ProQuake 1.01 and earlier allow remote attackers to cause a denial of service via a malformed (empty) UDP packet.