Luigi Auriemma

Hello Aluigi,
First of all thanks so much for your hard work discovering these bugs. Before I start I am run a COD2 1.0 server (No Punkbuster), which runs the Quake 3 Engine. A while ago our server was compromised. I am trying to basically do as the intruder would have done. Brute Forcing the RCON password seems to be impossible as I didn't see any excessive packets or commands being sent to the server in the logs. I stumbled upon your Q3 Engine Directory Transversal PoC 0.2.2 program. I tried this to see if the intruder could have in fact downloaded the configuration file. I followed the instructions on the program, but when I executed the command to download the file the map restarts on the client, but I can't find the downloaded file any where. I know it is supposed to go into the game folder, but I don't see it anywhere. Any help is very much appreciated. Thank you again.

-Colin

I also tried one other thing. I have a COD 2 1.3 server as well and the config file did download, but showed up in the App Data folder. I don't know why it won't work for 1.0

Thanks,
-Colin

Guys.... any answer??

Thanks,
-Colin

it's possible that with cod2 1.0 it doesn't work because uses a structure a bit different so it's not supported by q3dirtrav.

I guess you already know it, anyway take a look here if it's a problem of paths:
post3478.html#p3478