CVE-2007-1799

N/A Unknown

Published: April 02, 2007 Modified: April 23, 2026

Description

Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only checks for the ".." string, which allows remote attackers to overwrite arbitrary files via modified ".." sequences in a torrent filename, as demonstrated by "../" sequences, due to an incomplete fix for CVE-2007-1384.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://bugs.kde.org/show_bug.cgi?id=143637

Source: cve@mitre.org

http://secunia.com/advisories/24995

Source: cve@mitre.org

http://secunia.com/advisories/25097

Source: cve@mitre.org

http://secunia.com/advisories/26773

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200705-01.xml

Source: cve@mitre.org

http://www.debian.org/security/2007/dsa-1373

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDKSA-2007:095

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2007_007_suse.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/23745

Source: cve@mitre.org

http://www.ubuntu.com/usn/usn-436-2

Source: cve@mitre.org

https://bugs.gentoo.org/show_bug.cgi?id=170303

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/33566

Source: cve@mitre.org

http://bugs.kde.org/show_bug.cgi?id=143637

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/24995

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/25097

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/26773

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-200705-01.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2007/dsa-1373

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDKSA-2007:095

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2007_007_suse.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/23745

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/usn-436-2

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugs.gentoo.org/show_bug.cgi?id=170303

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/33566

Source: af854a3a-2127-422b-91ae-364da2661108

24 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

1.3%

80th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

joris_guisson