CVE-2000-0969 Information

Description

Format string vulnerability in Half Life dedicated server build 3104 and earlier allows remote attackers to execute arbitrary commands by injecting format strings into the changelevel command via the system console or rcon.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-10/0254.html http://archives.neohapsis.com/archives/bugtraq/2000-10/0409.html http://www.osvdb.org/6983 http://www.securityfocus.com/archive/1/141060 https://exchange.xforce.ibmcloud.com/vulnerabilities/5413