VYPR
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-2595

CVE-2004-2595

Description

Absolute path traversal vulnerability in Quake II server before R1Q2 on Linux, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a download command with a full pathname for a directory in the argument, which causes the server to crash when it cannot read data.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:id_software:quake_ii_server_linux:3.20:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:id_software:quake_ii_server_linux:3.20:*:*:*:*:*:*:*
    • cpe:2.3:a:id_software:quake_ii_server_linux:3.21:*:*:*:*:*:*:*
  • Quake II/serverllm-fuzzy
    Range: <R1Q2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.