FreeBSD Ports: Quake2forge Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://secur1ty.net/advisories/001 http://marc.theaimsgroup.com/?l=bugtraq&m=109892527321706 http://www.vuxml.org/freebsd/2c25e762-6bb9-11d9-93db-000a95bc6fae.html

Insight

The following packages are affected: quake2forge quake2lnx The Quake II server has multiple vulnerabilities that allow attackers to conduct denial of service attacks, execute arbitrary code on the system, or rejoin servers they have been banned from.

Severity

Classification

CVE CVE-2004-2592, CVE-2004-2593, CVE-2004-2594, CVE-2004-2595, CVE-2004-2596, CVE-2004-2597, CVE-2004-2598

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

FreeBSD Ports: chromium
FreeBSD Ports: courier
FreeBSD Ports: cfs
FreeBSD Ports: chromium
FreeBSD Ports: acroread, acroread4, acroread5

FreeBSD Ports: quake2forge

Take action and discover your vulnerabilities