Directory Traversal Vulnerability in Unreal Tournament Server by Epic Games
CVE-2003-1430

Currently unrated

Key Information:

Vendor: Epic Games
Status: Unreal Engine
Vendor: CVE Published:; 31 December 2003

What is CVE-2003-1430?

A directory traversal vulnerability exists in Unreal Tournament Server 436 and earlier, allowing remote attackers to exploit the server using '..' (dot dot) notation in an unreal:// URL to access sensitive files on the server. This flaw can lead to unauthorized access to critical files, potentially compromising the integrity and confidentiality of the server's data.

References

http://www.securityfocus.com/bid/6775

vdb-entryx_refsource_BID

http://archives.neohapsis.com/archives/bugtraq/2003-02/00...

mailing-listx_refsource_BUGTRAQ

http://archives.neohapsis.com/archives/bugtraq/2003-02/01...

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 22, 2007
Vulnerability published
Dec 31, 2003

JSON