CVE-2005-2007

2005-06-19T04:00:00
ID CVE-2005-2007
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:50:00

Description

Directory traversal vulnerability in Edgewall Trac 0.8.3 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the id parameter to the (1) upload or (2) attachment scripts.