CVE-2013-2900

2013-08-21T08:17:56
ID CVE-2013-2900
Type cve
Reporter NVD
Modified 2017-09-18T21:36:30

Description

The FilePath::ReferencesParent function in files/file_path.cc in Google Chrome before 29.0.1547.57 on Windows does not properly handle pathname components composed entirely of . (dot) and whitespace characters, which allows remote attackers to conduct directory traversal attacks via a crafted directory name.