CVE-2007-5742
NONEDirectory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown
Published: 12/1/2007Updated: 4/9/2025
Description
Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown vectors.
AI AnalysisPowered by AI
Affected Products
wesnothwesnoth
0.2.1
wesnothwesnoth
0.3
wesnothwesnoth
0.3.1
wesnothwesnoth
0.3.2
wesnothwesnoth
0.3.3
wesnothwesnoth
0.3.4
wesnothwesnoth
0.4
wesnothwesnoth
0.4.1
wesnothwesnoth
0.4.2
wesnothwesnoth
0.4.3
wesnothwesnoth
0.4.4
wesnothwesnoth
0.4.5
wesnothwesnoth
0.4.6
wesnothwesnoth
0.4.7
wesnothwesnoth
0.4.8
wesnothwesnoth
0.5
wesnothwesnoth
0.5.1
wesnothwesnoth
0.6
wesnothwesnoth
0.6.1
wesnothwesnoth
0.6.99.1
wesnothwesnoth
0.6.99.2
wesnothwesnoth
0.6.99.3
wesnothwesnoth
0.6.99.4
wesnothwesnoth
0.6.99.5
wesnothwesnoth
0.7
wesnothwesnoth
0.7.1
wesnothwesnoth
0.7.2
wesnothwesnoth
0.7.3
wesnothwesnoth
0.7.4
wesnothwesnoth
0.7.5
wesnothwesnoth
0.7.6
wesnothwesnoth
0.7.7
wesnothwesnoth
0.7.8
wesnothwesnoth
0.7.9
wesnothwesnoth
0.7.10
wesnothwesnoth
0.7.11
wesnothwesnoth
0.8
wesnothwesnoth
0.8.1
wesnothwesnoth
0.8.2
wesnothwesnoth
0.8.3
wesnothwesnoth
0.8.4
wesnothwesnoth
0.8.5
wesnothwesnoth
0.8.6
wesnothwesnoth
0.8.7
wesnothwesnoth
0.8.8
wesnothwesnoth
0.8.9
wesnothwesnoth
0.8.10
wesnothwesnoth
0.8.11
wesnothwesnoth
0.9.0
wesnothwesnoth
0.9.1
wesnothwesnoth
0.9.2
wesnothwesnoth
0.9.3
wesnothwesnoth
0.9.4
wesnothwesnoth
0.9.5
wesnothwesnoth
0.9.6
wesnothwesnoth
0.9.7
wesnothwesnoth
1.0rcl
wesnothwesnoth
1.1
wesnothwesnoth
1.1.1
wesnothwesnoth
1.1.2
wesnothwesnoth
1.1.3
wesnothwesnoth
1.1.4
wesnothwesnoth
1.1.5
wesnothwesnoth
1.1.6
wesnothwesnoth
1.1.7
wesnothwesnoth
1.1.8
wesnothwesnoth
1.1.9
wesnothwesnoth
1.1.10
wesnothwesnoth
1.1.11
wesnothwesnoth
1.1.12
wesnothwesnoth
1.1.13
wesnothwesnoth
1.1.14
wesnothwesnoth
1.2
wesnothwesnoth
1.2.1
wesnothwesnoth
1.2.2
wesnothwesnoth
1.2.3
wesnothwesnoth
1.2.4
wesnothwesnoth
1.2.5
wesnothwesnoth
1.2.6
wesnothwesnoth
1.2.7
wesnothwesnoth
1.2.8
References
- http://osvdb.org/41713
- http://secunia.com/advisories/27786
- http://secunia.com/advisories/27920
- http://secunia.com/advisories/27943
- http://sourceforge.net/project/shownotes.php?release_id=557098Patch
- http://www.debian.org/security/2007/dsa-1421
- http://www.securityfocus.com/bid/26626
- http://www.vupen.com/english/advisories/2007/4026
- http://www.wesnoth.org/forum/viewtopic.php?p=264289#264289Patch
- http://www.wesnoth.org/forum/viewtopic.php?t=18844
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38752
- https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00004.html
- https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00006.html
- http://osvdb.org/41713
- http://secunia.com/advisories/27786
- http://secunia.com/advisories/27920
- http://secunia.com/advisories/27943
- http://sourceforge.net/project/shownotes.php?release_id=557098Patch
- http://www.debian.org/security/2007/dsa-1421
- http://www.securityfocus.com/bid/26626