cpe:/a:milan_mimica:sparklet:0.9.4 CVE-2006-3573 2006-07-13T06:05:00.000-04:00 2017-07-19T21:32:24.727-04:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2006-07-13T14:32:00.000-04:00 SECTRACK 1016443 BID 18862 BID 18949 BUGTRAQ 20060706 Format string bug in Sparklet 0.9.4try3 SECUNIA 20974 OSVDB 27038 VUPEN ADV-2006-2695 VUPEN ADV-2006-2763 MISC http://aluigi.altervista.org/adv/sparkletfs-adv.txt XF sparklet-writetext-format-string(27603) Format string vulnerability in the WriteText function in agl_text.cpp in Milan Mimica Sparklet 0.9.4 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a player nickname.