Lucene search
PRIOn knowledge basePRION:CVE-2013-5648HistoryAug 29, 2013 - 12:07 p.m.
Path traversal
2013-08-2912:07:00
PRIOn knowledge base
www.prio-n.com
3
Absolute path traversal vulnerability in the handleStartDataFile function in DigiDocSAXParser.c in libdigidoc 3.6.0.0, as used in ID-software before 3.7.2 and other products, allows remote attackers to overwrite arbitrary files via a filename beginning with / (slash) or \ (backslash) in a DDOC file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| id-software | eq | 3.7 | |
| id-software | eq | 3.7.1 | |
| libdigidoc | eq | 3.6.0.0 |
Related
fedora
fedora
[SECURITY] Fedora 21 Update: libdigidoc-3.9.1.1191-1.fc21
2014-11-18 12:20:58
debiancve
debiancve
CVE-2013-5648
2022-10-03 16:14:56
nessus
nessus
Fedora 21 : libdigidoc-3.9.1.1191-1.fc21 (2014-14892)
2014-11-19 00:00:00
Mandriva Linux Security Advisory : libdigidoc (MDVSA-2013:225)
2013-09-03 00:00:00
cve
cve
CVE-2013-5648
2022-10-03 16:14:56
securityvulns
securityvulns
[ MDVSA-2013:225 ] libdigidoc
2013-09-09 00:00:00
libdigidoc unauthorized access
2013-09-09 00:00:00
cvelist
cvelist
CVE-2013-5648
2022-10-03 16:14:56
ubuntucve
ubuntucve
CVE-2013-5648
2013-08-29 00:00:00
mageia
mageia
Updated libdigidoc packages fix CVE-2013-5648
2013-08-30 21:44:17
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0268)
2022-01-28 00:00:00
nvd
nvd
CVE-2013-5648
2013-08-29 12:07:56