|
|
CVE Reference: CVE-2007-1904 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-1904 |
|
|
Description: Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and earlier, and ICQ 5.1 and probably earlier, allows user-assisted remote attackers to write files to arbitrary locations via a .. (dot dot) in a filename in a file transfer operation. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/33538 ST 1017890 1017891 SAID Secunia Advisory: SA24747 Secunia Advisory: SA24803 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=508 BID 23391 |
|
| Return to the previous page. |
