Title: id Software Quake3Arena Directory Traversal Vulnerability
Severity: HIGH
Description:
The Quake3Arena game is vulnerable to a directory traversal attack when participating in games hosted on remote servers.
A Quake3 Arena server is capable of gaining read or write access and executing arbitrary code on machines connecting to their server participating in a multi-player game. The Quake3 Arena server operator can access and write to any known directory above the subdirectory of the Quake3 Arena install directory. This is due to the implementation of the Software Developers Kit (SDK) shipped with Quake3 Arena which allows for modifications to the filesystem, and the failure of the client to properly handle the '..\' string. Attempting to access files above the subdirectory of the install directory will display an error message, however, access is still granted. This vulnerability in conjunction with the Automatic Download feature in Quake3 Arena can be used to launch an attack.
Affected Products:
- id Software Quake 3 Arena 1.16.0n
References:
- id Software: Quake3 Arena Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
