Quake 3 Arena Malformed Connection Packet DoS

Medium Nessus Plugin ID 10931


The remote server is vulnerable to a denial of service.


It was possible to crash the Quake3 Arena daemon by sending a specially crafted login string.

An attacker may use this attack to make this service crash continuously, preventing you from playing.


Upgrade your software.

Plugin Details

Severity: Medium

ID: 10931

File Name: quake3_dos.nasl

Version: $Revision: 1.21 $

Type: remote

Agent: windows

Family: Windows

Published: 2002/03/29

Modified: 2014/05/26

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:U/RC:ND

Vulnerability Information

Required KB Items: Settings/ParanoidReport

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2001/07/30

Reference Information

CVE: CVE-2001-1289

BID: 3123

OSVDB: 9849