Vulnerabilities > ID Software > Quake II Server Windows

DATE CVE VULNERABILITY TITLE RISK
2004-12-31 CVE-2004-2594 Remote vulnerability in ID Software Quake II Server
Absolute path traversal vulnerability in Quake II server before R1Q2 on Windows, as used in multiple products, allows remote attackers to read arbitrary files via a "\/" in a pathname argument, as demonstrated by "download \/server.cfg".
network
low complexity
id-software
5.0