CVE-2004-1958 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2004-1958

Directory traversal vulnerability in manifest.ini in Unreal engine allows remote attackers to overwrite arbitrary files via .. (dot dot) sequences in a UMOD (Unreal MOD) file.

Published: Dec 31, 2004
Updated: Apr 13, 2023
CVE: CVE-2004-1958
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
epic_games / unreal_engine	436	436.x
epic_games / unreal_tournament_2003	2199_macos	2199_macos.x
epic_games / unreal_tournament_2003	2225_macos	2225_macos.x
epic_games / unreal_tournament	451b	451b.x
epic_games / unreal_tournament_2003	2199_win32	2199_win32.x
epic_games / unreal_engine	433	433.x
epic_games / unreal_tournament_2003	2225_win32	2225_win32.x