NVD

Id
8524  
Name
CVE-2011-1595  
Description
Directory traversal vulnerability in the disk_create function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
3.2  
CVSS Vector
(AV:A/AC:H/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2011-05-24  
Modified Date
2013-04-04  
Seq
2011-1595  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
49059 8524 CVE-2011-1595 FEDORA-2011-7688  View
49060 8524 CVE-2011-1595 FEDORA-2011-7694  View
49061 8524 CVE-2011-1595 FEDORA-2011-7697  View
49062 8524 CVE-2011-1595 http://rdesktop.svn.sourceforge.net/viewvc/rdesktop?view=revision&revision=1626  View
49063 8524 CVE-2011-1595 GLSA-201210-03  View
49064 8524 CVE-2011-1595 1025525  View
49065 8524 CVE-2011-1595 [rdesktop-announce] 20110418 rdesktop 1.7.0 released  View
49066 8524 CVE-2011-1595 http://sourceforge.net/projects/rdesktop/files/rdesktop/1.7.0/rdesktop-1.7.0.tar.gz/download  View
49067 8524 CVE-2011-1595 MDVSA-2011:102  View
49068 8524 CVE-2011-1595 47419  View
49069 8524 CVE-2011-1595 USN-1136-1  View
49070 8524 CVE-2011-1595 https://bugzilla.redhat.com/show_bug.cgi?id=676252  View
49071 8524 CVE-2011-1595 RHSA-2011:0506  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
37033 JVNDB-2010-002813 rdesktop の disk_create 関数におけるディレクトリトラバーサルの脆弱性 rdesktop の disk.c 内にある disk_create 関数には、ディスクのリダイレクション処理が有効の際、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2011-1595 49502 CVE-2011-1595 8524 4.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002813.html 2010-05-08 2011-06-03 View