exploitDog

CVE-2004-2595

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Absolute path traversal vulnerability in Quake II server before R1Q2 on Linux, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a download command with a full pathname for a directory in the argument, which causes the server to crash when it cannot read data.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:id_software:quake_ii_server_linux:3.20:*:*:*:*:*:*:*

cpe:2.3:a:id_software:quake_ii_server_linux:3.21:*:*:*:*:*:*:*

EPSS

Процентиль: 81%

0.0156

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2004-2595

debian

больше 20 лет назад

Absolute path traversal vulnerability in Quake II server before R1Q2 o ...

GHSA-x62x-33c9-999r

github

больше 3 лет назад

Absolute path traversal vulnerability in Quake II server before R1Q2 on Linux, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a download command with a full pathname for a directory in the argument, which causes the server to crash when it cannot read data.

EPSS

Процентиль: 81%

0.0156

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other