CVE-2002-0770
published 2002-08-12CVE-2002-0770: Quake 2 (Q2) server 3.20 and 3.21 allows remote attackers to obtain sensitive server cvar variables, obtain directory listings, and execute Q2 server admin…
PriorityP423medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
5.53%
91.8th percentile
Quake 2 (Q2) server 3.20 and 3.21 allows remote attackers to obtain sensitive server cvar variables, obtain directory listings, and execute Q2 server admin commands via a client that does not expand "$" macros, which causes the server to expand the macros and leak the information, as demonstrated using "say $rcon_password."
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| id_software | quake_2i_server | — | — |
| id_software | quake_2i_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
CWE
Improper Neutralization of Variable Name Delimiters
mitre_cwe
CWE-154 Improper Neutralization of Variable Name Delimiters
CWE-154: Improper Neutralization of Variable Name Delimiters
The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as variable name delimiters when they are sent to a downstream component.
As data is parsed, an injected delimiter may cause the process to take unexpected actions that result in an attack. Example: "$" for an environment variable.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Integrity. Impact: Unexpected State.
Potential Mitigations:
Developers should anticipate that variable name delimiters will be injected/removed/manipulated in the input vectors of their product. Use an appropriate combination of denylists and allowlists to ensure only valid, e
CWE
Improper Neutralization of Substitution Characters
mitre_cwe
CWE-153 Improper Neutralization of Substitution Characters
CWE-153: Improper Neutralization of Substitution Characters
The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as substitution characters when they are sent to a downstream component.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Integrity. Impact: Unexpected State.
Potential Mitigations:
Developers should anticipate that substitution characters will be injected/removed/manipulated in the input vectors of their product. Use an appropriate combination of denylists and allowlists to ensure only valid, expected and appropriate input is processed by the system.
[Implementation] Assume all input is malicious. Use an "accept known good" input validation strategy, i.
CWE
Improper Neutralization of Macro Symbols
mitre_cwe
CWE-152 Improper Neutralization of Macro Symbols
CWE-152: Improper Neutralization of Macro Symbols
The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as macro symbols when they are sent to a downstream component.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Integrity. Impact: Unexpected State.
Potential Mitigations:
[Implementation] Developers should anticipate that macro symbols will be injected/removed/manipulated in the input vectors of their product. Use an appropriate combination of denylists and allowlists to ensure only valid, expected and appropriate input is processed by the system.
[Implementation] Assume all input is malicious. Use an "accept known good" input validation strategy, i.e., use a lis
http://online.securityfocus.com/archive/1/272548http://www.iss.net/security_center/static/9095.phphttp://www.kb.cert.org/vuls/id/970915http://www.osvdb.org/11187http://www.quakesrc.org/forum/topicDisplay.php?topicID=160http://www.securityfocus.com/bid/4744http://online.securityfocus.com/archive/1/272548http://www.iss.net/security_center/static/9095.phphttp://www.kb.cert.org/vuls/id/970915http://www.osvdb.org/11187http://www.quakesrc.org/forum/topicDisplay.php?topicID=160http://www.securityfocus.com/bid/4744
2002-08-12
Published