Lucene search

MitreCVE-2003-0650

HistoryAug 27, 2003 - 4:00 a.m.

CVE-2003-0650

2003-08-2704:00:00

mitre

web.nvd.nist.gov

gsapak.exe

gamespy arcade

vulnerability

directory traversal

remote attackers

arbitrary code

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.04

Percentile

92.1%

JSON

Directory traversal vulnerability in GSAPAK.EXE for GameSpy Arcade, possibly versions before 1.3e, allows remote attackers to overwrite arbitrary files and execute arbitrary code via … (dot dot) sequences in filenames in a .APK (Zip) file.

Affected configurations

Nvd

Node

gamespyarcadeRange≤1.3e

VendorProductVersionCPE
gamespyarcade*cpe:2.3:a:gamespy:arcade:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gamespy	arcade	*	cpe:2.3:a:gamespy:arcade::::::::

References

archives.neohapsis.com/archives/vulnwatch/2003-q3/0064.html

marc.info/?l=bugtraq&m=105958779017085&w=2

www.gamespyarcade.com/features/versions.shtml

www.securityfocus.com/bid/8309

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.04

Percentile

92.1%

JSON

Related for CVE-2003-0650