Vulnerabilities > CVE-2004-1958 - Unspecified vulnerability in Epic Games products

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

epic-games

exploit available

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

Directory traversal vulnerability in manifest.ini in Unreal engine allows remote attackers to overwrite arbitrary files via .. (dot dot) sequences in a UMOD (Unreal MOD) file.

Vulnerable Configurations

Part	Description	Count
Application	Epic_Games Epic Games Unreal Engine 436 Epic Games Unreal Engine 433 Epic Games Unreal Tournament 2003 2199_Macos Epic Games Unreal Tournament 2003 2225_Macos Epic Games Unreal Tournament 2003 2199_Win32 Epic Games Unreal Tournament 2003 2225_Win32 Epic Games Unreal Tournament 451B	7

Exploit-Db

description	Epic Games Unreal Tournament Engine 3 UMOD Manifest.INI Remote Arbitrary File Overwrite Vulnerability. CVE-2004-1958. Remote exploits for multiple platform
id	EDB-ID:24041
last seen	2016-02-02
modified	2004-04-22
published	2004-04-22
reporter	Luigi Auriemma
source	https://www.exploit-db.com/download/24041/
title	Epic Games Unreal Tournament Engine 3 - UMOD Manifest.INI Remote Arbitrary File Overwrite Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References