Vulnerability Details : CVE-2007-1799
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only checks for the ".." string, which allows remote attackers to overwrite arbitrary files via modified ".." sequences in a torrent filename, as demonstrated by "../" sequences, due to an incomplete fix for CVE-2007-1384.
Vulnerability category: Directory traversal
Products affected by CVE-2007-1799
- cpe:2.3:a:joris_guisson:ktorrent:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:joris_guisson:ktorrent:2.1.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-1799
0.80%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 72 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-1799
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
6.4
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:P/A:P |
10.0
|
4.9
|
NIST |
References for CVE-2007-1799
-
http://www.mandriva.com/security/advisories?name=MDKSA-2007:095
Mandriva
-
http://security.gentoo.org/glsa/glsa-200705-01.xml
Ktorrent: Multiple vulnerabilities (GLSA 200705-01) — Gentoo security
-
http://www.securityfocus.com/bid/23745
-
http://bugs.kde.org/show_bug.cgi?id=143637
143637 – The directory traversal fix is incomplete
-
http://www.ubuntu.com/usn/usn-436-2
USN-436-2: KTorrent vulnerability | Ubuntu security notices | Ubuntu
-
http://www.debian.org/security/2007/dsa-1373
Debian -- The Universal Operating System
-
https://bugs.gentoo.org/show_bug.cgi?id=170303
170303 – net-p2p/ktorrent <2.1.3 : unspecified + directory traversal (CVE-2007-{138{4|5}|1799})
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/33566
KTorrent torrent.cpp filename directory traversal CVE-2007-1799 Vulnerability Report
-
http://www.novell.com/linux/security/advisories/2007_007_suse.html
404 Page Not Found | SUSE
Jump to