Lucene search

[email protected]NVD:CVE-2007-5742

HistoryDec 01, 2007 - 6:46 a.m.

CVE-2007-5742

2007-12-0106:46:00

CWE-22

[email protected]

web.nvd.nist.gov

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

6.5 Medium

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.6%

JSON

Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via “…” sequences in unknown vectors.

Affected configurations

NVD

Node

wesnothwesnothMatch0.2.1

wesnothwesnothMatch0.3

wesnothwesnothMatch0.3.1

wesnothwesnothMatch0.3.2

wesnothwesnothMatch0.3.3

wesnothwesnothMatch0.3.4

wesnothwesnothMatch0.4

wesnothwesnothMatch0.4.1

wesnothwesnothMatch0.4.2

wesnothwesnothMatch0.4.3

wesnothwesnothMatch0.4.4

wesnothwesnothMatch0.4.5

wesnothwesnothMatch0.4.6

wesnothwesnothMatch0.4.7

wesnothwesnothMatch0.4.8

wesnothwesnothMatch0.5

wesnothwesnothMatch0.5.1

wesnothwesnothMatch0.6

wesnothwesnothMatch0.6.1

wesnothwesnothMatch0.6.99.1

wesnothwesnothMatch0.6.99.2

wesnothwesnothMatch0.6.99.3

wesnothwesnothMatch0.6.99.4

wesnothwesnothMatch0.6.99.5

wesnothwesnothMatch0.7

wesnothwesnothMatch0.7.1

wesnothwesnothMatch0.7.2

wesnothwesnothMatch0.7.3

wesnothwesnothMatch0.7.4

wesnothwesnothMatch0.7.5

wesnothwesnothMatch0.7.6

wesnothwesnothMatch0.7.7

wesnothwesnothMatch0.7.8

wesnothwesnothMatch0.7.9

wesnothwesnothMatch0.7.10

wesnothwesnothMatch0.7.11

wesnothwesnothMatch0.8

wesnothwesnothMatch0.8.1

wesnothwesnothMatch0.8.2

wesnothwesnothMatch0.8.3

wesnothwesnothMatch0.8.4

wesnothwesnothMatch0.8.5

wesnothwesnothMatch0.8.6

wesnothwesnothMatch0.8.7

wesnothwesnothMatch0.8.8

wesnothwesnothMatch0.8.9

wesnothwesnothMatch0.8.10

wesnothwesnothMatch0.8.11

wesnothwesnothMatch0.9.0

wesnothwesnothMatch0.9.1

wesnothwesnothMatch0.9.2

wesnothwesnothMatch0.9.3

wesnothwesnothMatch0.9.4

wesnothwesnothMatch0.9.5

wesnothwesnothMatch0.9.6

wesnothwesnothMatch0.9.7

wesnothwesnothMatch1.0rcl

wesnothwesnothMatch1.1

wesnothwesnothMatch1.1.1

wesnothwesnothMatch1.1.2

wesnothwesnothMatch1.1.3

wesnothwesnothMatch1.1.4

wesnothwesnothMatch1.1.5

wesnothwesnothMatch1.1.6

wesnothwesnothMatch1.1.7

wesnothwesnothMatch1.1.8

wesnothwesnothMatch1.1.9

wesnothwesnothMatch1.1.10

wesnothwesnothMatch1.1.11

wesnothwesnothMatch1.1.12

wesnothwesnothMatch1.1.13

wesnothwesnothMatch1.1.14

wesnothwesnothMatch1.2

wesnothwesnothMatch1.2.1

wesnothwesnothMatch1.2.2

wesnothwesnothMatch1.2.3

wesnothwesnothMatch1.2.4

wesnothwesnothMatch1.2.5

wesnothwesnothMatch1.2.6

wesnothwesnothMatch1.2.7

wesnothwesnothMatch1.2.8

References

osvdb.org/41713

secunia.com/advisories/27786

secunia.com/advisories/27920

secunia.com/advisories/27943

sourceforge.net/project/shownotes.php?release_id=557098

www.debian.org/security/2007/dsa-1421

www.securityfocus.com/bid/26626

www.vupen.com/english/advisories/2007/4026

www.wesnoth.org/forum/viewtopic.php?p=264289#264289

www.wesnoth.org/forum/viewtopic.php?t=18844

exchange.xforce.ibmcloud.com/vulnerabilities/38752

www.redhat.com/archives/fedora-package-announce/2007-December/msg00004.html

www.redhat.com/archives/fedora-package-announce/2007-December/msg00006.html

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

6.5 Medium

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.6%

JSON

Related for NVD:CVE-2007-5742

cve1 ubuntucve1 nessus3 openvas6 prion1 securityvulns2 debian1 fedora2 cvelist1