Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0650

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0650
Last Modified 05 Sep 2008 04:34:53
Published 27 Aug 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0650

Summary

Directory traversal vulnerability in GSAPAK.EXE for GameSpy Arcade, possibly versions before 1.3e, allows remote attackers to overwrite arbitrary files and execute arbitrary code via .. (dot dot) sequences in filenames in a .APK (Zip) file.

Vulnerable Systems

Application

  • Gamespy Arcade 1.3e


References

BID - 8309

MISC - http://www.gamespyarcade.com/features/versions.shtml

BUGTRAQ - 20030730 GameSpy Arcade Arbitrary File Writing Vulnerability


Last Updated: 27 May 2016 10:38:00