CVE-2004-1958

Directory traversal vulnerability in manifest.ini in Unreal engine allows remote attackers to overwrite arbitrary files via .. (dot dot) sequences in a UMOD (Unreal MOD) file.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:epic_games:unreal_engine:433:*:*:*:*:*:*:*
cpe:2.3:a:epic_games:unreal_engine:436:*:*:*:*:*:*:*
cpe:2.3:a:epic_games:unreal_tournament:451b:*:*:*:*:*:*:*
cpe:2.3:a:epic_games:unreal_tournament_2003:2199_macos:*:*:*:*:*:*:*
cpe:2.3:a:epic_games:unreal_tournament_2003:2199_win32:*:*:*:*:*:*:*
cpe:2.3:a:epic_games:unreal_tournament_2003:2225_macos:*:*:*:*:*:*:*
cpe:2.3:a:epic_games:unreal_tournament_2003:2225_win32:*:*:*:*:*:*:*

History

20 Nov 2024, 23:52

Type Values Removed Values Added
References () http://aluigi.altervista.org/adv/umod-adv.txt - Exploit () http://aluigi.altervista.org/adv/umod-adv.txt - Exploit
References () http://marc.info/?l=bugtraq&m=108267310519459&w=2 - () http://marc.info/?l=bugtraq&m=108267310519459&w=2 -
References () http://www.securityfocus.com/bid/10196 - Exploit () http://www.securityfocus.com/bid/10196 - Exploit
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/15942 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/15942 -

Information

Published : 2004-12-31 05:00

Updated : 2024-11-20 23:52


NVD link : CVE-2004-1958

Mitre link : CVE-2004-1958

CVE.ORG link : CVE-2004-1958


JSON object : View

Products Affected

epic_games

  • unreal_engine
  • unreal_tournament_2003
  • unreal_tournament