source: http://www.securityfocus.com/bid/9218/info

The mvdsv Quake Server implementation is prone to a remotely exploitable buffer overrun vulnerability. This could permit execution of arbitrary code in the context of the server. 

http://www.exploit-db.com/sploits/23439.tar.gz