Directory traversal vulnerability in ImageServer (aka UTImageServer) in WebAdmin before 1.7 for Epic Games Unreal Tournament 3 (UT3) 1.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.
Software | From | Fixed in |
---|---|---|
epic_games / unreal_tournament_3 | 1.3-build_3601 | 1.3-build_3601.x |
epic_games / unreal_tournament_3 | 1.3-build_3614 | 1.3-build_3614.x |