CVE-2004-2592
Quake II Server - Denial of Service via Negative Array Offset in Configstrings and Baselines
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2004-2592. PoCs published by Richard Stanway.
AI-analyzed exploit summary The provided text describes multiple vulnerabilities in Quake II, including boundary condition errors and access validation failures. It includes a command example that may trigger a denial of service or other exploits.
Description
Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (application crash) via a modified client that asks the server to send data stored at a negative array offset, which is not handled when processing Configstrings and Baselines.
Exploits (1)
The provided text describes multiple vulnerabilities in Quake II, including boundary condition errors and access validation failures. It includes a command example that may trigger a denial of service or other exploits.