Lucene search
MitreCVELIST:CVE-2004-2597HistoryNov 29, 2005 - 2:00 a.m.
CVE-2004-2597
2005-11-2902:00:00
mitre
www.cve.org
Quake II server before R1Q2, as used in multiple products, allows remote attackers to bypass IP-based access control rules via a userinfo string that already contains an βipβ key/value pair but is also long enough to cause a new key/value pair to be truncated, which interferes with the serverβs ability to find the clientβs IP address.
References
archives.neohapsis.com/archives/bugtraq/2004-10/0299.html
secunia.com/advisories/13013
secur1ty.net/advisories/001
securitytracker.com/id?1011979
web.archive.org/web/20041130092749/www.r1ch.net/stuff/r1q2/
www.osvdb.org/11186
www.securityfocus.com/bid/11551
exchange.xforce.ibmcloud.com/vulnerabilities/17895
Related
cve
cve
CVE-2004-2597
2005-11-29 02:00:00
nvd
nvd
CVE-2004-2597
2004-12-31 05:00:00
openvas
openvas
FreeBSD Ports: quake2forge
2008-09-04 00:00:00
FreeBSD Ports: quake2forge
2008-09-04 00:00:00