ID CVE-2006-2082
Summary Directory traversal vulnerability in Quake 3 engine, as used in products including Quake3 Arena, Return to Castle Wolfenstein, Wolfenstein: Enemy Territory, and Star Trek Voyager: Elite Force, when the sv_allowdownload cvar is enabled, allows remote attackers to read arbitrary files from the server via ".." sequences in a .pk3 file request. id Software has released patches to address this and other issues.
References
Vulnerable Configurations
  • cpe:2.3:a:id_software:quake_3_engine:*:*:*:*:*:*:*:*
    cpe:2.3:a:id_software:quake_3_engine:*:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 18-10-2018 - 16:38)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 17924
bugtraq 20060508 Two independent vulnerabilities (client and server side) in Quake3 engine and many derived games
fulldisc 20060508 Two independent vulnerabilities (client and server side) in Quake3 engine and many derived games
sreason 880
xf quake3-sv-allowdownload-directory-traversal(26347)
Last major update 18-10-2018 - 16:38
Published 10-05-2006 - 02:18
Last modified 18-10-2018 - 16:38
Back to Top