CVE-2007-5742 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-5742
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5742

Description: Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown vectors.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/38752 SAID Secunia Advisory: SA27920 Secunia Advisory: SA27943 Secunia Advisory: SA27786 OSVDB 41713 FEDORA DEBIAN http://www.debian.org/security/2007/dsa-1421 CONFIRM http://www.wesnoth.org/forum/viewtopic.php?t=18844 http://www.wesnoth.org/forum/viewtopic.php?p=264289#264289 http://sourceforge.net/project/shownotes.php?release_id=557098 BID 26626

Return to the previous page.