VULHUB ™

The Quake3Arena game is vulnerable to a directory traversal attack when participating in games hosted on remote servers. A Quake3 Arena server is capable of gaining read or write access and executing arbitrary code on machines connecting to their server participating in a multi-player game. The Quake3 Arena server operator can access and write to any known directory above the subdirectory of the Quake3 Arena install directory. This is due to the implementation of the Software Developers Kit (SDK) shipped with Quake3 Arena which allows for modifications to the filesystem, and the failure of the client to properly handle the '..\' string. Attempting to access files above the subdirectory of the install directory will display an error message, however, access is still granted. This vulnerability in conjunction with the Automatic Download feature in Quake3 Arena can be used to launch an attack.

The Quake3Arena game is vulnerable to a directory traversal attack when participating in games hosted on remote servers. A Quake3 Arena server is capable of gaining read or write access and executing arbitrary code on machines connecting to their server participating in a multi-player game. The Quake3 Arena server operator can access and write to any known directory above the subdirectory of the Quake3 Arena install directory. This is due to the implementation of the Software Developers Kit (SDK) shipped with Quake3 Arena which allows for modifications to the filesystem, and the failure of the client to properly handle the '..\' string. Attempting to access files above the subdirectory of the install directory will display an error message, however, access is still granted. This vulnerability in conjunction with the Automatic Download feature in Quake3 Arena can be used to launch an attack.