Filtered by vendor Id Software Subscriptions
Filtered by product Quake 2i Server Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2002-0770 1 Id Software 1 Quake 2i Server 2024-11-21 N/A
Quake 2 (Q2) server 3.20 and 3.21 allows remote attackers to obtain sensitive server cvar variables, obtain directory listings, and execute Q2 server admin commands via a client that does not expand "$" macros, which causes the server to expand the macros and leak the information, as demonstrated using "say $rcon_password."