Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\ (dot dot backslash) sequence in the filename, as stored in the file repository.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2007-08-28T18:00:00

Updated: 2024-08-07T14:28:52.539Z

Reserved: 2007-07-18T00:00:00

Link: CVE-2007-3846

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-08-28T18:17:00.000

Modified: 2024-11-21T00:34:12.810

Link: CVE-2007-3846

cve-icon Redhat

No data.