Id Software

Quake Ii Server

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2004-2592

Exploit
  • EPSS 4.34%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a modified client that asks the server to send data stored at a negative array offset, which is not handled when p...

7.5

CVE-2004-2593

  • EPSS 3.78%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in command-packet processing of Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a packet with a long cmd_args buffer.

5

CVE-2004-2596

  • EPSS 1.27%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (exhaustion of connection slots) via a large number of connections from the same IP address.

5

CVE-2004-2597

  • EPSS 0.47%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Quake II server before R1Q2, as used in multiple products, allows remote attackers to bypass IP-based access control rules via a userinfo string that already contains an "ip" key/value pair but is also long enough to cause a new key/value pair to be ...