vendor:
Quake II
by:
SecurityFocus
7.5
CVSS
HIGH
Variable Expansion Vulnerability
20
CWE
Product Name: Quake II
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, Linux
2002
Quake II Server Vulnerability
A vulnerability has been reported in some versions of the Quake II server. While variable expansion is normally performed on the client side, a modified client may pass unexpanded variables such as $rcon_password to the server. The server will expand these variables within it's local context, potentially leaking sensitive information to the remote attacker.
Mitigation:
Modify the q2 client, so that the client will not replace the $... variables in says