Vulnerability Description
The pathname canonicalization functionality in io/filesystem/filesystem.cc in Widelands before 15.1 expands leading ~ (tilde) characters to home-directory pathnames but does not restrict use of these characters in strings received from the network, which might allow remote attackers to conduct absolute path traversal attacks and overwrite arbitrary files via a ~ in a pathname that is used for a file transfer in an Internet game, a different vulnerability than CVE-2011-1932.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Widelands | Widelands | - |
Related Weaknesses (CWE)
References
- http://bazaar.launchpad.net/~widelands-dev/widelands/build-15/revision/5021PatchRelease NotesThird Party Advisory
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=617960Issue TrackingThird Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71626Third Party AdvisoryVDB Entry
- http://bazaar.launchpad.net/~widelands-dev/widelands/build-15/revision/5021PatchRelease NotesThird Party Advisory
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=617960Issue TrackingThird Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71626Third Party AdvisoryVDB Entry
FAQ
What is CVE-2011-4675?
CVE-2011-4675 is a vulnerability with a CVSS score of 6.4 (MEDIUM). The pathname canonicalization functionality in io/filesystem/filesystem.cc in Widelands before 15.1 expands leading ~ (tilde) characters to home-directory pathnames but does not restrict use of these ...
How severe is CVE-2011-4675?
CVE-2011-4675 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-4675?
Check the references section above for vendor advisories and patch information. Affected products include: Widelands Widelands.