Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
id software quake ii server 3.21 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2004-2592
Quake II server before R1Q2, as used in multiple products, allows remote malicious users to cause a denial of service (application crash) via a modified client that asks the server to send data stored at a negative array offset, which is not handled when processing Configstrings ...
Id Software Quake Ii Server 3.20
Id Software Quake Ii Server 3.21
1 EDB exploit
7.5
CVSSv2
CVE-2004-2593
Buffer overflow in command-packet processing of Quake II server before R1Q2, as used in multiple products, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a packet with a long cmd_args buffer.
Id Software Quake Ii Server 3.21
Id Software Quake Ii Server 3.20
5
CVSSv2
CVE-2004-2596
Quake II server before R1Q2, as used in multiple products, allows remote malicious users to cause a denial of service (exhaustion of connection slots) via a large number of connections from the same IP address.
Id Software Quake Ii Server 3.21
Id Software Quake Ii Server 3.20
5
CVSSv2
CVE-2004-2597
Quake II server before R1Q2, as used in multiple products, allows remote malicious users to bypass IP-based access control rules via a userinfo string that already contains an "ip" key/value pair but is also long enough to cause a new key/value pair to be truncated, whi...
Id Software Quake Ii Server 3.20
Id Software Quake Ii Server 3.21
5
CVSSv2
CVE-2004-2594
Absolute path traversal vulnerability in Quake II server before R1Q2 on Windows, as used in multiple products, allows remote malicious users to read arbitrary files via a "\/" in a pathname argument, as demonstrated by "download \/server.cfg".
Id Software Quake Ii Server Windows 3.20
Id Software Quake Ii Server Windows 3.21
5
CVSSv2
CVE-2004-2595
Absolute path traversal vulnerability in Quake II server before R1Q2 on Linux, as used in multiple products, allows remote malicious users to cause a denial of service (application crash) via a download command with a full pathname for a directory in the argument, which causes th...
Id Software Quake Ii Server Linux 3.20
Id Software Quake Ii Server Linux 3.21
5
CVSSv2
CVE-2002-0770
Quake 2 (Q2) server 3.20 and 3.21 allows remote malicious users to obtain sensitive server cvar variables, obtain directory listings, and execute Q2 server admin commands via a client that does not expand "$" macros, which causes the server to expand the macros and leak...
Id Software Quake 2i Server 3.20
Id Software Quake 2i Server 3.21
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started