CVE-2007-1799 Information
Description
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only checks for the ..\ string which allows remote attackers to overwrite arbitrary files via modified ..\ sequences in a torrent filename as demonstrated by ../\ sequences due to an incomplete fix for CVE-2007-1384.
Reference
http://bugs.kde.org/show_bug.cgi?id=143637 http://secunia.com/advisories/24995 http://secunia.com/advisories/25097 http://secunia.com/advisories/26773 http://security.gentoo.org/glsa/glsa-200705-01.xml http://www.debian.org/security/2007/dsa-1373 http://www.mandriva.com/security/advisories?name=MDKSA-2007:095 http://www.novell.com/linux/security/advisories/2007_007_suse.html http://www.securityfocus.com/bid/23745 http://www.ubuntu.com/usn/usn-436-2 https://bugs.gentoo.org/show_bug.cgi?id=170303 https://exchange.xforce.ibmcloud.com/vulnerabilities/33566
Share on: