CVE-2000-0969

N/A Unknown
Published: December 19, 2000 Modified: April 16, 2026
View on NVD

Description

Format string vulnerability in Half Life dedicated server build 3104 and earlier allows remote attackers to execute arbitrary commands by injecting format strings into the changelevel command, via the system console or rcon.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://archives.neohapsis.com/archives/bugtraq/2000-10/0254.html
Source: cve@mitre.org
http://archives.neohapsis.com/archives/bugtraq/2000-10/0409.html
Source: cve@mitre.org
http://www.osvdb.org/6983
Source: cve@mitre.org
http://www.securityfocus.com/archive/1/141060
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/5413
Source: cve@mitre.org
http://archives.neohapsis.com/archives/bugtraq/2000-10/0254.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://archives.neohapsis.com/archives/bugtraq/2000-10/0409.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.osvdb.org/6983
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/141060
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/5413
Source: af854a3a-2127-422b-91ae-364da2661108

10 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
2.7%
86th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

valve_software