Lucene search

[email protected]NVD:CVE-2011-1932

HistoryDec 05, 2011 - 11:55 a.m.

CVE-2011-1932

2011-12-0511:55:05

CWE-22

[email protected]

web.nvd.nist.gov

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

6.6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

58.4%

JSON

Directory traversal vulnerability in io/filesystem/filesystem.cc in Widelands before 15.1 might allow remote attackers to overwrite arbitrary files via . (dot) characters in a pathname that is used for a file transfer in an Internet game.

Affected configurations

NVD

Node

widelandswidelandsMatch-build1

widelandswidelandsMatch-build10

widelandswidelandsMatch-build10_release_candidate

widelandswidelandsMatch-build11

widelandswidelandsMatch-build11_release_candidate

widelandswidelandsMatch-build12

widelandswidelandsMatch-build12_release_candidate

widelandswidelandsMatch-build13

widelandswidelandsMatch-build13_release_candidate

widelandswidelandsMatch-build13_release_candidate2

widelandswidelandsMatch-build14

widelandswidelandsMatch-build14_release_candidate

widelandswidelandsMatch-build2

widelandswidelandsMatch-build3

widelandswidelandsMatch-build4

widelandswidelandsMatch-build5

widelandswidelandsMatch-build6

widelandswidelandsMatch-build7

widelandswidelandsMatch-build8

widelandswidelandsMatch-build9

References

bazaar.launchpad.net/~widelands-dev/widelands/build-15/revision/5021

bugs.debian.org/cgi-bin/bugreport.cgi?bug=617960

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

6.6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

58.4%

JSON

Related for NVD:CVE-2011-1932

debiancve2 prion2 cvelist2 cve2 ubuntucve2 nvd1