cvelistv5 - cve-2007-3846

CVE-2007-3846 (GCVE-0-2007-3846)

Vulnerability from cvelistv5 – Published: 2007-08-28 18:00 – Updated: 2024-08-07 14:28

Summary

Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\ (dot dot backslash) sequence in the filename, as stored in the file repository.

Severity ?

No CVSS data available.

CWE

Assigner

redhat

References

URL

Tags

	http://www.vupen.com/english/advisories/2007/3004	vdb-entryx_refsource_VUPEN
	http://subversion.tigris.org/servlets/ReadMsg?lis…	mailing-listx_refsource_MLIST
	http://tortoisesvn.net/node/291	x_refsource_CONFIRM
	http://secunia.com/advisories/26632	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/bid/25468	vdb-entryx_refsource_BID
	http://crisp.cs.du.edu/?q=node/36	x_refsource_MISC
	http://osvdb.org/40119	vdb-entryx_refsource_OSVDB
	http://subversion.tigris.org/servlets/NewsItemVie…	x_refsource_CONFIRM
	http://securitytracker.com/id?1018617	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/26625	third-party-advisoryx_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2007/3003	vdb-entryx_refsource_VUPEN
	http://osvdb.org/40118	vdb-entryx_refsource_OSVDB
	http://subversion.tigris.org/servlets/ReadMsg?lis…	x_refsource_CONFIRM
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T14:28:52.539Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "ADV-2007-3004",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/3004"
          },
          {
            "name": "[users-subversion] 20070828 Subversion 1.4.5 releaded (Win32 security release)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://tortoisesvn.net/node/291"
          },
          {
            "name": "26632",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/26632"
          },
          {
            "name": "25468",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/25468"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://crisp.cs.du.edu/?q=node/36"
          },
          {
            "name": "40119",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/40119"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941"
          },
          {
            "name": "1018617",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1018617"
          },
          {
            "name": "26625",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/26625"
          },
          {
            "name": "ADV-2007-3003",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/3003"
          },
          {
            "name": "40118",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/40118"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
          },
          {
            "name": "subversion-filename-directory-traversal(36312)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36312"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-08-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\\ (dot dot backslash) sequence in the filename, as stored in the file repository."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-28T12:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "ADV-2007-3004",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/3004"
        },
        {
          "name": "[users-subversion] 20070828 Subversion 1.4.5 releaded (Win32 security release)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://tortoisesvn.net/node/291"
        },
        {
          "name": "26632",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/26632"
        },
        {
          "name": "25468",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/25468"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://crisp.cs.du.edu/?q=node/36"
        },
        {
          "name": "40119",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/40119"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941"
        },
        {
          "name": "1018617",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1018617"
        },
        {
          "name": "26625",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/26625"
        },
        {
          "name": "ADV-2007-3003",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/3003"
        },
        {
          "name": "40118",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/40118"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
        },
        {
          "name": "subversion-filename-directory-traversal(36312)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36312"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2007-3846",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\\ (dot dot backslash) sequence in the filename, as stored in the file repository."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "ADV-2007-3004",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/3004"
            },
            {
              "name": "[users-subversion] 20070828 Subversion 1.4.5 releaded (Win32 security release)",
              "refsource": "MLIST",
              "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
            },
            {
              "name": "http://tortoisesvn.net/node/291",
              "refsource": "CONFIRM",
              "url": "http://tortoisesvn.net/node/291"
            },
            {
              "name": "26632",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/26632"
            },
            {
              "name": "25468",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/25468"
            },
            {
              "name": "http://crisp.cs.du.edu/?q=node/36",
              "refsource": "MISC",
              "url": "http://crisp.cs.du.edu/?q=node/36"
            },
            {
              "name": "40119",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/40119"
            },
            {
              "name": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941",
              "refsource": "CONFIRM",
              "url": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941"
            },
            {
              "name": "1018617",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1018617"
            },
            {
              "name": "26625",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/26625"
            },
            {
              "name": "ADV-2007-3003",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/3003"
            },
            {
              "name": "40118",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/40118"
            },
            {
              "name": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413",
              "refsource": "CONFIRM",
              "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
            },
            {
              "name": "subversion-filename-directory-traversal(36312)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36312"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2007-3846",
    "datePublished": "2007-08-28T18:00:00",
    "dateReserved": "2007-07-18T00:00:00",
    "dateUpdated": "2024-08-07T14:28:52.539Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:subversion:subversion:*:*:windows:*:*:*:*:*\", \"versionEndIncluding\": \"1.4.4\", \"matchCriteriaId\": \"1990E01B-99A1-4E5F-B84E-466B654B518B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tortoisesvn:tortoisesvn:*:*:windows:*:*:*:*:*\", \"versionEndIncluding\": \"1.4.4\", \"matchCriteriaId\": \"AB68E39A-869E-469E-88AB-6B4786CAA85C\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\\\\ (dot dot backslash) sequence in the filename, as stored in the file repository.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad de salto de directorio en Subversion anterior a 1.4.5, utilizado en TortoiseSVN anterior a 1.4.5 y posiblemente otros productos, cuando se ejecuta en sistemas basados en Windows, permite a usuarios autenticados remotamente sobrescribir y crear archivos de su elecci\\u00f3n mediante una secuencia ..\\\\ (punto punto barra invertida) en el nombre de archivo, almacenado en el repositorio de archivos.\"}]",
      "id": "CVE-2007-3846",
      "lastModified": "2024-11-21T00:34:12.810",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:S/C:P/I:P/A:P\", \"baseScore\": 6.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 6.8, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2007-08-28T18:17:00.000",
      "references": "[{\"url\": \"http://crisp.cs.du.edu/?q=node/36\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://osvdb.org/40118\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://osvdb.org/40119\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/26625\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/26632\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://securitytracker.com/id?1018617\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Patch\"]}, {\"url\": \"http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://tortoisesvn.net/node/291\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.securityfocus.com/bid/25468\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/3003\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/3004\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/36312\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://crisp.cs.du.edu/?q=node/36\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://osvdb.org/40118\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://osvdb.org/40119\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/26625\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/26632\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://securitytracker.com/id?1018617\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://tortoisesvn.net/node/291\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.securityfocus.com/bid/25468\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/3003\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/3004\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/36312\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-22\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-3846\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2007-08-28T18:17:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\\\\ (dot dot backslash) sequence in the filename, as stored in the file repository.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de salto de directorio en Subversion anterior a 1.4.5, utilizado en TortoiseSVN anterior a 1.4.5 y posiblemente otros productos, cuando se ejecuta en sistemas basados en Windows, permite a usuarios autenticados remotamente sobrescribir y crear archivos de su elecci\u00f3n mediante una secuencia ..\\\\ (punto punto barra invertida) en el nombre de archivo, almacenado en el repositorio de archivos.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:S/C:P/I:P/A:P\",\"baseScore\":6.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":6.8,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-22\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:subversion:subversion:*:*:windows:*:*:*:*:*\",\"versionEndIncluding\":\"1.4.4\",\"matchCriteriaId\":\"1990E01B-99A1-4E5F-B84E-466B654B518B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tortoisesvn:tortoisesvn:*:*:windows:*:*:*:*:*\",\"versionEndIncluding\":\"1.4.4\",\"matchCriteriaId\":\"AB68E39A-869E-469E-88AB-6B4786CAA85C\"}]}]}],\"references\":[{\"url\":\"http://crisp.cs.du.edu/?q=node/36\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://osvdb.org/40118\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://osvdb.org/40119\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/26625\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26632\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1018617\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://tortoisesvn.net/node/291\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.securityfocus.com/bid/25468\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/3003\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/3004\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/36312\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://crisp.cs.du.edu/?q=node/36\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://osvdb.org/40118\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://osvdb.org/40119\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/26625\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/26632\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1018617\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://tortoisesvn.net/node/291\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.securityfocus.com/bid/25468\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/3003\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/3004\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/36312\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GHSA-Q2FR-786F-CRQR

Vulnerability from github – Published: 2022-05-01 18:17 – Updated: 2022-05-01 18:17

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-3846"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-22"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-08-28T18:17:00Z",
    "severity": "MODERATE"
  },
  "details": "Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\\ (dot dot backslash) sequence in the filename, as stored in the file repository.",
  "id": "GHSA-q2fr-786f-crqr",
  "modified": "2022-05-01T18:17:49Z",
  "published": "2022-05-01T18:17:49Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3846"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36312"
    },
    {
      "type": "WEB",
      "url": "http://crisp.cs.du.edu/?q=node/36"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/40118"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/40119"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/26625"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/26632"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1018617"
    },
    {
      "type": "WEB",
      "url": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941"
    },
    {
      "type": "WEB",
      "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
    },
    {
      "type": "WEB",
      "url": "http://tortoisesvn.net/node/291"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/25468"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/3003"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/3004"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2007-3846

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2007-3846

Aliases

CVE-2007-3846

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-3846",
    "description": "Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\\ (dot dot backslash) sequence in the filename, as stored in the file repository.",
    "id": "GSD-2007-3846"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-3846"
      ],
      "details": "Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\\ (dot dot backslash) sequence in the filename, as stored in the file repository.",
      "id": "GSD-2007-3846",
      "modified": "2023-12-13T01:21:41.833012Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2007-3846",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\\ (dot dot backslash) sequence in the filename, as stored in the file repository."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "ADV-2007-3004",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/3004"
          },
          {
            "name": "[users-subversion] 20070828 Subversion 1.4.5 releaded (Win32 security release)",
            "refsource": "MLIST",
            "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
          },
          {
            "name": "http://tortoisesvn.net/node/291",
            "refsource": "CONFIRM",
            "url": "http://tortoisesvn.net/node/291"
          },
          {
            "name": "26632",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/26632"
          },
          {
            "name": "25468",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/25468"
          },
          {
            "name": "http://crisp.cs.du.edu/?q=node/36",
            "refsource": "MISC",
            "url": "http://crisp.cs.du.edu/?q=node/36"
          },
          {
            "name": "40119",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/40119"
          },
          {
            "name": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941",
            "refsource": "CONFIRM",
            "url": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941"
          },
          {
            "name": "1018617",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1018617"
          },
          {
            "name": "26625",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/26625"
          },
          {
            "name": "ADV-2007-3003",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/3003"
          },
          {
            "name": "40118",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/40118"
          },
          {
            "name": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413",
            "refsource": "CONFIRM",
            "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
          },
          {
            "name": "subversion-filename-directory-traversal(36312)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36312"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:subversion:subversion:*:*:windows:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "1.4.4",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:tortoisesvn:tortoisesvn:*:*:windows:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "1.4.4",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2007-3846"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\\ (dot dot backslash) sequence in the filename, as stored in the file repository."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-22"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941",
              "refsource": "CONFIRM",
              "tags": [
                "Patch"
              ],
              "url": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941"
            },
            {
              "name": "http://tortoisesvn.net/node/291",
              "refsource": "CONFIRM",
              "tags": [
                "Patch"
              ],
              "url": "http://tortoisesvn.net/node/291"
            },
            {
              "name": "26625",
              "refsource": "SECUNIA",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/26625"
            },
            {
              "name": "26632",
              "refsource": "SECUNIA",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/26632"
            },
            {
              "name": "http://crisp.cs.du.edu/?q=node/36",
              "refsource": "MISC",
              "tags": [],
              "url": "http://crisp.cs.du.edu/?q=node/36"
            },
            {
              "name": "25468",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/25468"
            },
            {
              "name": "1018617",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1018617"
            },
            {
              "name": "40119",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/40119"
            },
            {
              "name": "40118",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/40118"
            },
            {
              "name": "[users-subversion] 20070828 Subversion 1.4.5 releaded (Win32 security release)",
              "refsource": "MLIST",
              "tags": [],
              "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
            },
            {
              "name": "ADV-2007-3003",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/3003"
            },
            {
              "name": "ADV-2007-3004",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/3004"
            },
            {
              "name": "subversion-filename-directory-traversal(36312)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36312"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 6.8,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2017-07-29T01:32Z",
      "publishedDate": "2007-08-28T18:17Z"
    }
  }
}

CERTA-2007-AVI-383

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été identifiée dans l'application de gestion de versions Subversion (aussi écrit en abrégé svn). Elle permettrait à une personne malveillante, sous certaines conditions, d'exécuter du code arbitraire à distance sur le système vulnérable.

Description

Une vulnérabilité a été identifiée dans l'application de gestion de versions Subversion (aussi écrit en abrégé svn). Le concept, similaire à CVS, repose sur un dépôt centralisé. Il offre aux clients un ensemble de commandes, incluant checkout (co) et update (up).

Cependant, des bibliothèques installées chez le client permettrait de créer des fichiers sur le poste, pendant l'une de ces opérations, même si le fichier ne se trouve pas dans le contexte de la copie de travail svn.

Une personne malveillante distante pourrait ainsi profiter de cette vulnérabilité pour écraser des fichiers existants, et exécuter des commandes arbitraires sur le système du client vulnérable.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	N/A	N/A	Subversion, pour les versions antérieures à 1.4.5.

References

Title

Publication Time

Tags

Annonce de la version 1.4.5 de Subversion le 27 août 2007	None	vendor-advisory
Annonce du changement de version Subversion le 27 août 2007 :	-	other
Détails du changement de version Subversion publiés le 28 août 2007 :	-	other
Annonce de la vulnérabilité par le laboratoire CRISP :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Subversion, pour les versions ant\u00e9rieures \u00e0 1.4.5.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans l\u0027application de gestion de\nversions Subversion (aussi \u00e9crit en abr\u00e9g\u00e9 svn). Le concept, similaire \u00e0\nCVS, repose sur un d\u00e9p\u00f4t centralis\u00e9. Il offre aux clients un ensemble de\ncommandes, incluant checkout (co) et update (up).\n\nCependant, des biblioth\u00e8ques install\u00e9es chez le client permettrait de\ncr\u00e9er des fichiers sur le poste, pendant l\u0027une de ces op\u00e9rations, m\u00eame\nsi le fichier ne se trouve pas dans le contexte de la copie de travail\nsvn.\n\nUne personne malveillante distante pourrait ainsi profiter de cette\nvuln\u00e9rabilit\u00e9 pour \u00e9craser des fichiers existants, et ex\u00e9cuter des\ncommandes arbitraires sur le syst\u00e8me du client vuln\u00e9rable.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-3846",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-3846"
    }
  ],
  "links": [
    {
      "title": "Annonce du changement de version Subversion le 27 ao\u00fbt 2007    :",
      "url": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941"
    },
    {
      "title": "D\u00e9tails du changement de version Subversion publi\u00e9s le 28    ao\u00fbt 2007 :",
      "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
    },
    {
      "title": "Annonce de la vuln\u00e9rabilit\u00e9 par le laboratoire CRISP :",
      "url": "http://crisp.cs.du.edu/q=node/36"
    }
  ],
  "reference": "CERTA-2007-AVI-383",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-08-30T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans l\u0027application de gestion de\nversions Subversion (aussi \u00e9crit en abr\u00e9g\u00e9 svn). Elle permettrait \u00e0 une\npersonne malveillante, sous certaines conditions, d\u0027ex\u00e9cuter du code\narbitraire \u00e0 distance sur le syst\u00e8me vuln\u00e9rable.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Subversion (svn)",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Annonce de la version 1.4.5 de Subversion le 27 ao\u00fbt 2007",
      "url": null
    }
  ]
}

CERTA-2007-AVI-383

Vulnerability from certfr_avis - Published: - Updated:

Description

Une personne malveillante distante pourrait ainsi profiter de cette vulnérabilité pour écraser des fichiers existants, et exécuter des commandes arbitraires sur le système du client vulnérable.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	N/A	N/A	Subversion, pour les versions antérieures à 1.4.5.

References

Title

Publication Time

Tags

Annonce de la version 1.4.5 de Subversion le 27 août 2007	None	vendor-advisory
Annonce du changement de version Subversion le 27 août 2007 :	-	other
Détails du changement de version Subversion publiés le 28 août 2007 :	-	other
Annonce de la vulnérabilité par le laboratoire CRISP :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Subversion, pour les versions ant\u00e9rieures \u00e0 1.4.5.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans l\u0027application de gestion de\nversions Subversion (aussi \u00e9crit en abr\u00e9g\u00e9 svn). Le concept, similaire \u00e0\nCVS, repose sur un d\u00e9p\u00f4t centralis\u00e9. Il offre aux clients un ensemble de\ncommandes, incluant checkout (co) et update (up).\n\nCependant, des biblioth\u00e8ques install\u00e9es chez le client permettrait de\ncr\u00e9er des fichiers sur le poste, pendant l\u0027une de ces op\u00e9rations, m\u00eame\nsi le fichier ne se trouve pas dans le contexte de la copie de travail\nsvn.\n\nUne personne malveillante distante pourrait ainsi profiter de cette\nvuln\u00e9rabilit\u00e9 pour \u00e9craser des fichiers existants, et ex\u00e9cuter des\ncommandes arbitraires sur le syst\u00e8me du client vuln\u00e9rable.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-3846",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-3846"
    }
  ],
  "links": [
    {
      "title": "Annonce du changement de version Subversion le 27 ao\u00fbt 2007    :",
      "url": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941"
    },
    {
      "title": "D\u00e9tails du changement de version Subversion publi\u00e9s le 28    ao\u00fbt 2007 :",
      "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
    },
    {
      "title": "Annonce de la vuln\u00e9rabilit\u00e9 par le laboratoire CRISP :",
      "url": "http://crisp.cs.du.edu/q=node/36"
    }
  ],
  "reference": "CERTA-2007-AVI-383",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-08-30T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans l\u0027application de gestion de\nversions Subversion (aussi \u00e9crit en abr\u00e9g\u00e9 svn). Elle permettrait \u00e0 une\npersonne malveillante, sous certaines conditions, d\u0027ex\u00e9cuter du code\narbitraire \u00e0 distance sur le syst\u00e8me vuln\u00e9rable.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Subversion (svn)",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Annonce de la version 1.4.5 de Subversion le 27 ao\u00fbt 2007",
      "url": null
    }
  ]
}

FKIE_CVE-2007-3846

Vulnerability from fkie_nvd - Published: 2007-08-28 18:17 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
secalert@redhat.com	http://crisp.cs.du.edu/?q=node/36
secalert@redhat.com	http://osvdb.org/40118
secalert@redhat.com	http://osvdb.org/40119
secalert@redhat.com	http://secunia.com/advisories/26625	Patch, Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/26632	Patch, Vendor Advisory
secalert@redhat.com	http://securitytracker.com/id?1018617
secalert@redhat.com	http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941	Patch
secalert@redhat.com	http://subversion.tigris.org/servlets/ReadMsg?list=users&msgNo=69413
secalert@redhat.com	http://tortoisesvn.net/node/291	Patch
secalert@redhat.com	http://www.securityfocus.com/bid/25468
secalert@redhat.com	http://www.vupen.com/english/advisories/2007/3003
secalert@redhat.com	http://www.vupen.com/english/advisories/2007/3004
secalert@redhat.com	https://exchange.xforce.ibmcloud.com/vulnerabilities/36312
af854a3a-2127-422b-91ae-364da2661108	http://crisp.cs.du.edu/?q=node/36
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/40118
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/40119
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/26625	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/26632	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1018617
af854a3a-2127-422b-91ae-364da2661108	http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941	Patch
af854a3a-2127-422b-91ae-364da2661108	http://subversion.tigris.org/servlets/ReadMsg?list=users&msgNo=69413
af854a3a-2127-422b-91ae-364da2661108	http://tortoisesvn.net/node/291	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/25468
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/3003
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/3004
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/36312

Impacted products

	Vendor	Product	Version
	subversion	subversion	*
	tortoisesvn	tortoisesvn	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:subversion:subversion:*:*:windows:*:*:*:*:*",
              "matchCriteriaId": "1990E01B-99A1-4E5F-B84E-466B654B518B",
              "versionEndIncluding": "1.4.4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:tortoisesvn:tortoisesvn:*:*:windows:*:*:*:*:*",
              "matchCriteriaId": "AB68E39A-869E-469E-88AB-6B4786CAA85C",
              "versionEndIncluding": "1.4.4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\\ (dot dot backslash) sequence in the filename, as stored in the file repository."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de salto de directorio en Subversion anterior a 1.4.5, utilizado en TortoiseSVN anterior a 1.4.5 y posiblemente otros productos, cuando se ejecuta en sistemas basados en Windows, permite a usuarios autenticados remotamente sobrescribir y crear archivos de su elecci\u00f3n mediante una secuencia ..\\ (punto punto barra invertida) en el nombre de archivo, almacenado en el repositorio de archivos."
    }
  ],
  "id": "CVE-2007-3846",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 6.8,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2007-08-28T18:17:00.000",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "http://crisp.cs.du.edu/?q=node/36"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://osvdb.org/40118"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://osvdb.org/40119"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/26625"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/26632"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://securitytracker.com/id?1018617"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://tortoisesvn.net/node/291"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/bid/25468"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.vupen.com/english/advisories/2007/3003"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.vupen.com/english/advisories/2007/3004"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36312"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://crisp.cs.du.edu/?q=node/36"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/40118"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/40119"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/26625"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/26632"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1018617"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://subversion.tigris.org/servlets/ReadMsg?list=users\u0026msgNo=69413"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://tortoisesvn.net/node/291"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/25468"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/3003"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/3004"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36312"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-22"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-3846 (GCVE-0-2007-3846)

GHSA-Q2FR-786F-CRQR

GSD-2007-3846

CERTA-2007-AVI-383

Description

Solution

CERTA-2007-AVI-383

Description

Solution

FKIE_CVE-2007-3846

Tags

Sightings

Nomenclature