CVE-2020-15007

A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tech 1 (aka Doom engine) allows arbitrary code execution via an unsafe usage of fscanf, because it does not limit the number of characters to be read in a format argument.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:idsoftware:tech_1:-:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:doom_vanille_project:doom_vanille:*:*:*:*:*:*:*:*

Information

Published : 2020-06-24 04:15

Updated : 2020-07-08 07:33


NVD link : CVE-2020-15007

Mitre link : CVE-2020-15007


JSON object : View

CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Advertisement

dedicated server usa

Products Affected

doom_vanille_project

  • doom_vanille

idsoftware

  • tech_1