Id Software: >> Quake Ii Server Linux >> 3.21 Security Vulnerabilities
Absolute path traversal vulnerability in Quake II server before R1Q2 on Linux, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a download command with a full pathname for a directory in the argument, which causes the server to crash when it cannot read data.
CVSS Score
5.0
EPSS Score
0.016
Published
2004-12-31