10 matches found
EUVD-2004-2587
Malware in sbrugna...
EUVD-2004-2590
Malware in sbrugna...
CVE-2004-2598
Quake II server before R1Q2, as used in multiple products, allows remote attackers to corrupt the server's client state data structure by exiting a session without a valid disconnect command, then reconnecting, which prevents a mod from being notified of changes in the client state. NOTE: the...
id Software Quake II Server 3.20/3.21 Remote Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4744/info Quake II is a multiplayer game released by id Software. The source code has been made publically available, and versions are available for Windows and Linux. A vulnerability has been reported in some versions of...
CVE-2004-2598
Quake II server before R1Q2, as used in multiple products, allows remote attackers to corrupt the server's client state data structure by exiting a session without a valid disconnect command, then reconnecting, which prevents a mod from being notified of changes in the client state. NOTE: the...
CVE-2004-2596
Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service exhaustion of connection slots via a large number of connections from the same IP address...
CVE-2004-2593
Buffer overflow in command-packet processing of Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a packet with a long cmdargs buffer...
CVE-2004-2597
Quake II server before R1Q2, as used in multiple products, allows remote attackers to bypass IP-based access control rules via a userinfo string that already contains an "ip" key/value pair but is also long enough to cause a new key/value pair to be truncated, which interferes with the server's...
CVE-2004-2596
Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service exhaustion of connection slots via a large number of connections from the same IP address...
Remote quake 2 3.2x server cvar leak
Hello, A problem exists in the Quake II Server for any OS probably all versions; tested 3.20 and 3.21 discovered by 'Redix' that allows server cvars containing sensitve information to be leaked. This has been known for a little over 2 months, I run several Q2 servers and only learned of it today...