CVE-2007-3846

Published: Aug 28, 2007Modified: Apr 23, 2026

6.0

Vector

AV:N/AC:M/Au:S/C:P/I:P/A:P

Exploitability: 6.8 / Impact: 6.4

Source: NVD

Description

Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\ (dot dot backslash) sequence in the filename, as stored in the file repository.

Affected (2)

Products: Subversion: Subversion · Tortoisesvn: Tortoisesvn

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Subversion Subversion	Up to 1.4.4
Tortoisesvn Tortoisesvn	Up to 1.4.4

Related CWEs

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (28)

http://crisp.cs.du.edu/?q=node/36

Source: secalert@redhat.com

http://osvdb.org/40118

Source: secalert@redhat.com

http://osvdb.org/40119

Source: secalert@redhat.com

http://secunia.com/advisories/26625

Source: secalert@redhat.com

PatchVendor Advisory

http://secunia.com/advisories/26632

Source: secalert@redhat.com

PatchVendor Advisory

http://securitytracker.com/id?1018617

Source: secalert@redhat.com

http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941

Source: secalert@redhat.com

Patch

http://subversion.tigris.org/servlets/ReadMsg?list=users&msgNo=69413

Source: secalert@redhat.com

http://subversion.tigris.org/servlets/ReadMsg?list=users&msgNo=69413

Source: secalert@redhat.com

http://tortoisesvn.net/node/291

Source: secalert@redhat.com

Patch

http://www.securityfocus.com/bid/25468

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2007/3003

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2007/3004

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/36312

Source: secalert@redhat.com

http://crisp.cs.du.edu/?q=node/36

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/40118

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/40119

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/26625

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://secunia.com/advisories/26632

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://securitytracker.com/id?1018617

Source: af854a3a-2127-422b-91ae-364da2661108

http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://subversion.tigris.org/servlets/ReadMsg?list=users&msgNo=69413

Source: af854a3a-2127-422b-91ae-364da2661108

http://subversion.tigris.org/servlets/ReadMsg?list=users&msgNo=69413

Source: af854a3a-2127-422b-91ae-364da2661108

http://tortoisesvn.net/node/291

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securityfocus.com/bid/25468

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/3003

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/3004

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/36312

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.