Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot (..) attack.
References
Link | Resource |
---|---|
http://www.osvdb.org/7531 | |
http://www.quake3arena.com/news/index.html | Patch Vendor Advisory |
http://www.securityfocus.com/bid/1169 | |
http://xforce.iss.net/alerts/advise50.php3 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2000-07-12T04:00:00
Updated: 2004-09-02T09:00:00
Reserved: 2000-05-03T00:00:00
Link: CVE-2000-0303
JSON object: View
NVD Information
Status : Analyzed
Published: 2000-05-03T04:00:00.000
Modified: 2008-09-10T19:04:03.257
Link: CVE-2000-0303
JSON object: View
Redhat Information
No data.
CWE