| CNNVD-ID编号 | CNNVD-200605-174 |
| CVE编号 | CVE-2006-2082 |
| 发布时间 | 2006-05-09 |
| 更新时间 | 2006-05-10 |
| 漏洞类型 | 路径遍历 |
| 漏洞来源 | Discovery is credited to Ludwig Nussel and Thilo Schulz |
| 危险等级 | 高危 |
| 威胁类型 | 远程 |
| 厂 商 | id_software |
包括Quake3 Arena, Castle Wolfenstein, Wolfenstein: Enemy Territory, 以及Star Trek Voyager: Elite Force在内的多种产品使用的Quake 3 引擎存在目录遍历漏洞。当sv_allowdownload cvar启用时,远程攻击者可以借助.pk3文件请求中的\"..\" 序列,从服务器读取任意文件。
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接: id Software Quake 3 Arena 1.32 b id Software Quake III Arena 1.32c Patch (linux) http://www.idsoftware.com/downloads/shambler.php?id=8001 id Software Quake III Arena 1.32c Patch (mac) http://www.idsoftware.com/downloads/shambler.php?id=8002 id Software Quake III Arena 1.32c Patch (win32) http://www.idsoftware.com/downloads/shambler.php?id=8000 id Software Return to Castle Wolfenstein 1.41 id Software Return to Castle Wolfenstein 1.41b Patch (linux) http://www.idsoftware.com/downloads/shambler.php?id=10001 id Software Return to Castle Wolfenstein 1.41b Patch (win32) http://www.idsoftware.com/downloads/shambler.php?id=10000
来源: BID
名称: 17924
来源: BUGTRAQ
名称: 20060508 Two independent vulnerabilities (client and server side) in Quake3 engine and many derived games
链接:http://www.securityfocus.com/archive/1/archive/1/433349/100/0/threaded
来源: XF
名称: quake3-sv-allowdownload-directory-traversal(26347)
来源: SREASON
名称: 880