CVE-2003-1430

Name of the Vulnerable Software and Affected Versions Unreal Tournament Server versions 436 and earlier

Description The issue allows remote attackers to access known files via a ".." (dot dot) in an unreal:// URL, which is a type of directory traversal vulnerability. This means an attacker could potentially access sensitive files by manipulating the URL path.

Recommendations For versions 436 and earlier, consider restricting access to the unreal:// URL endpoint until a fix is available. As a temporary workaround, avoid using the ".." (dot dot) notation in URLs to minimize the risk of exploitation.