Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0770

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0770
Last Modified 05 Sep 2008 04:28:54
Published 12 Aug 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0770

Summary

Quake 2 (Q2) server 3.20 and 3.21 allows remote attackers to obtain sensitive server cvar variables, obtain directory listings, and execute Q2 server admin commands via a client that does not expand "$" macros, which causes the server to expand the macros and leak the information, as demonstrated using "say $rcon_password."

Vulnerable Systems

Application

  • Id Software Quake 2i Server 3.20

  • Id Software Quake 2i Server 3.21


References

CERT-VN - VU#970915

BID - 4744

MISC - http://www.quakesrc.org/forum/topicDisplay.php?topicID=160

XF - quake2-unexpanded-var-disclosure(9095)

BUGTRAQ - 20020514 Remote quake 2 3.2x server cvar leak

OSVDB - 11187


Last Updated: 27 May 2016 10:37:04