CVE-2000-0969
First published: Tue Dec 19 2000(Updated: )
Format string vulnerability in Half Life dedicated server build 3104 and earlier allows remote attackers to execute arbitrary commands by injecting format strings into the changelevel command, via the system console or rcon.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Half-Life Dedicated Server | =3.1.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2000-0969?
CVE-2000-0969 is considered a critical vulnerability due to the potential for remote code execution.
How do I fix CVE-2000-0969?
To fix CVE-2000-0969, upgrade to Half Life Dedicated Server version 3.1.4 or later.
What software is affected by CVE-2000-0969?
CVE-2000-0969 affects Half Life Dedicated Server versions 3.1.3 and earlier.
Can CVE-2000-0969 be exploited remotely?
Yes, CVE-2000-0969 can be exploited remotely via the system console or rcon.
What type of attack is associated with CVE-2000-0969?
CVE-2000-0969 is associated with format string vulnerabilities that allow execution of arbitrary commands.
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/references
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- vendor/valve software
- product/half-life dedicated server
- canonical/valve software half-life dedicated server
- agent/software-canonical-lookup-request
- collector/nvd-index
- canonical/half-life dedicated server
- version/half-life dedicated server/3.1.3