CVE-2006-1075 Information

Description

Format string vulnerability in the visualization function in Jason Boettcher Liero Xtreme 0.62b and earlier allows remote attackers to execute arbitrary code via format string specifiers in (1) a nickname (2) a dedicated server name or (3) a mapname in a level (aka .lxl) file.

Reference

http://aluigi.altervista.org/adv/lieroxxx-adv.txt http://secunia.com/advisories/19079 http://securityreason.com/securityalert/549 http://www.securityfocus.com/archive/1/426864/100/0/threaded http://www.securityfocus.com/bid/16990 http://www.vupen.com/english/advisories/2006/0849 https://exchange.xforce.ibmcloud.com/vulnerabilities/25187