Описание
Directory traversal vulnerability in the disk_create function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 1.7.0-1ubuntu2 |
| hardy | ignored | end of life |
| lucid | released | 1.6.0-2ubuntu3.1 |
| maverick | released | 1.6.0-3ubuntu2.1 |
| natty | released | 1.6.0-3ubuntu4.1 |
| upstream | released | 1.7.0 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
Directory traversal vulnerability in the disk_create function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname.
Directory traversal vulnerability in the disk_create function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname.
Directory traversal vulnerability in the disk_create function in disk. ...
Directory traversal vulnerability in the disk_create function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname.
EPSS
4.3 Medium
CVSS2