Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-2082HistoryMay 10, 2006 - 2:18 a.m.
CVE-2006-2082
2006-05-1002:18:00
Debian Security Bug Tracker
security-tracker.debian.org
7
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.011
Percentile
84.5%
Directory traversal vulnerability in Quake 3 engine, as used in products including Quake3 Arena, Return to Castle Wolfenstein, Wolfenstein: Enemy Territory, and Star Trek Voyager: Elite Force, when the sv_allowdownload cvar is enabled, allows remote attackers to read arbitrary files from the server via “…” sequences in a .pk3 file request.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | ioquake3 | < 1.36+svn1788j-1 | ioquake3_1.36+svn1788j-1_all.deb |
| Debian | 11 | all | ioquake3 | < 1.36+svn1788j-1 | ioquake3_1.36+svn1788j-1_all.deb |
| Debian | 999 | all | ioquake3 | < 1.36+svn1788j-1 | ioquake3_1.36+svn1788j-1_all.deb |
| Debian | 13 | all | ioquake3 | < 1.36+svn1788j-1 | ioquake3_1.36+svn1788j-1_all.deb |
Related
nvd
nvd
CVE-2006-2082
2006-05-10 02:18:00
prion
prion
Directory traversal
2006-05-10 02:18:00
cve
cve
CVE-2006-2082
2006-05-10 02:18:00
cvelist
cvelist
CVE-2006-2082
2006-05-10 00:00:00
securityvulns
securityvulns
osv
osv
ioquake3-1.36+git.20210720-1.2 on GA media
2024-06-15 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.011
Percentile
84.5%
Related for DEBIANCVE:CVE-2006-2082