Lucene search
MitreCVELIST:CVE-2011-4675HistoryDec 05, 2011 - 11:00 a.m.
CVE-2011-4675
2011-12-0511:00:00
mitre
www.cve.org
The pathname canonicalization functionality in io/filesystem/filesystem.cc in Widelands before 15.1 expands leading ~ (tilde) characters to home-directory pathnames but does not restrict use of these characters in strings received from the network, which might allow remote attackers to conduct absolute path traversal attacks and overwrite arbitrary files via a ~ in a pathname that is used for a file transfer in an Internet game, a different vulnerability than CVE-2011-1932.
Related
ubuntucve
ubuntucve
CVE-2011-4675
2011-12-05 00:00:00
CVE-2011-1932
2011-12-05 00:00:00
debiancve
debiancve
CVE-2011-4675
2011-12-05 11:55:07
CVE-2011-1932
2011-12-05 11:55:05
nvd
nvd
CVE-2011-4675
2011-12-05 11:55:07
CVE-2011-1932
2011-12-05 11:55:05
prion
prion
Path traversal
2011-12-05 11:55:00
Directory traversal
2011-12-05 11:55:00
cve
cve
CVE-2011-4675
2011-12-05 11:55:07
CVE-2011-1932
2011-12-05 11:55:05
cvelist
cvelist
CVE-2011-1932
2011-12-05 11:00:00