Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via “…” sequences in unknown vectors.
osvdb.org/41713
secunia.com/advisories/27786
secunia.com/advisories/27920
secunia.com/advisories/27943
sourceforge.net/project/shownotes.php?release_id=557098
www.debian.org/security/2007/dsa-1421
www.securityfocus.com/bid/26626
www.vupen.com/english/advisories/2007/4026
www.wesnoth.org/forum/viewtopic.php?p=264289
www.wesnoth.org/forum/viewtopic.php?t=18844
exchange.xforce.ibmcloud.com/vulnerabilities/38752
www.redhat.com/archives/fedora-package-announce/2007-December/msg00004.html
www.redhat.com/archives/fedora-package-announce/2007-December/msg00006.html