Archives by Day

September 2014
SuMTuWThFSa
123456
78910111213
14151617181920
21222324252627
282930

Return to Castle Wolfenstein

Platform(s): PC, PlayStation 2, Xbox
Genre: Action
Publisher: Activision
Developer: id Software
Release Date: Nov. 19, 2001 (US), Nov. 30, 2001 (EU)

About Rainier

PC gamer, WorthPlaying EIC, globe-trotting couch potato, patriot, '80s headbanger, movie watcher, music lover, foodie and man in black -- squirrel!

Advertising





'Return to Castle Wolfenstein' - v1.41b Win32/Linux Patch Available NOW

by Rainier on May 8, 2006 @ 3:10 p.m. PDT

Set against the backdrop of WWII, Return to Castle Wolfenstein plunges players into a maelstrom of action, espionage and covert operations, as an American soldier tasked with infiltrating the heart of Nazi Germany and stopping the darkest plans of the Third Reich. Throughout the game, players are locked in combat with waves of Nazi storm-troopers, undead Teutonic knights and the twisted products of genetic experimentation. Return to Castle Wolfenstein further draws the player into the nightmare with advanced artificial intelligence (AI), photo-realistic character and environment textures, revolutionary effects, and an immersive story that unfolds before the player like a movie.

Get the Return to Castle Wolfenstein v1.41b Patch off WP (3mb)

CVE-2006-2082: directory traversal / information leak in Quake III Arena auto download feature

Ludwig Nussel and Thilo Shulz discovered a vulnerability letting a malicious client download files from a server if auto download is enabled ( sv_allowDownload 1 ).

Issue #2 ( CVE pending ): R_RemapShaders buffer overflow

A second issue fixed in this release would let a malicious server exploit a buffer overflow to execute a shellcode on connecting clients.

--
Updated binaries for the following games are available:

Quake III Arena - fixed at version 1.32c
Return To Castle Wolfenstein - fixed at version 1.41b
Wolfenstein: Enemy Territory - fixed at version 2.60b

The zips hold binaries for all the operating systems we support. You need to upgrade to the latest through the usual installers first, and replace the engine binaries with the newer ones.

If you run a server with any older version, please upgrade or consider turning off autodownload ( set sv_allowDownload to 0 ). Wolfenstein: Enemy Territory servers http/ftp download feature is not affected by CVE-2006-2082. If you don't wish to upgrade, you can decide to only enable http/ftp downloads and disable legacy downloads in that particular case.

Finally, server administrators should note that game servers should be running in restricted environments as much as possible ( unpriviledged accounts and chroot jails ). It's a good thing to do the same for clients, or at least ensure that you are properly firewalled.


More articles about Return to Castle Wolfenstein
blog comments powered by Disqus