Directory traversal vulnerability in the disk_create function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2011-05-24T23:00:00

Updated: 2024-08-06T22:28:42.031Z

Reserved: 2011-04-05T00:00:00

Link: CVE-2011-1595

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2011-05-24T23:55:02.917

Modified: 2024-11-21T01:26:40.650

Link: CVE-2011-1595

cve-icon Redhat

Severity : Moderate

Publid Date: 2011-04-18T00:00:00Z

Links: CVE-2011-1595 - Bugzilla