CVE-2007-1799

2007-04-02T22:19:00
ID CVE-2007-1799
Type cve
Reporter cve@mitre.org
Modified 2017-07-29T01:30:00

Description

Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only checks for the ".." string, which allows remote attackers to overwrite arbitrary files via modified ".." sequences in a torrent filename, as demonstrated by "../" sequences, due to an incomplete fix for CVE-2007-1384.