CVE-2008-4243

The CVE-2008-4243 entry describes a directory traversal vulnerability in ImageServer (UTImageServer) used by WebAdmin prior to version 1.7 for Unreal Tournament 3 (UT3) 1.3. The flaw allows remote attackers to read arbitrary files by supplying a .. (dot dot) in the URI, potentially exposing sensi...

CVE-2008-4243

Directory traversal vulnerability in ImageServer aka UTImageServer in WebAdmin before 1.7 for Epic Games Unreal Tournament 3 UT3 1.3 allows remote attackers to read arbitrary files via a .. dot dot in the URI...

Epic Games Unreal Tournament 3 UT3 WebAdmin目录遍历漏洞

BUGTRAQ ID: 31272 CNCAN ID：CNCAN-2008092305 Unreal Tournament 3 UT3是一款基于Unreal引擎的游戏程序，包含内部WEB服务程序。 Unreal Tournament 3 UT3包含的管理员接口不正确过滤用户输入，远程攻击者可以利用漏洞以WEB权限查看web root外的文件内容。 提交类似如下的请求，可绕过WEB ROOT限制，以WEB权限查看系统文件内容： GET /images/../../UTGame/Config/UTGame.INI HTTP/1.0 Host: localhost Epic Games UT3...

Unreal Tournament 3 1.3 - Directory Traversal

Luigi Auriemma Application: Unreal Tournament 3 http://www.unrealtournament3.com Versions: 1.3 ONLY both build 3601 and 3614 older versions are safe Platforms: Windows and Linux Bug: directory traversal in the web interface Exploitation: remote, versus server Date: 21 Sep 2008 Author: Luigi...

Unreal Tournament 3 v1.3 Remote Directory Traversal Vulnerability

Exploit for unknown platform in category remote exploits ================================================================= Unreal Tournament 3 v1.3 Remote Directory Traversal Vulnerability ================================================================= Luigi Auriemma Application: Unreal...