CVE-2007-3846

NONE EPSS 73.5%
Published Aug 28, 200718y ago · Modified Jun 16, 20262w ago
Find Similar
Published Aug 28, 2007 18y ago
Last Modified Jun 16, 2026 2w ago

Description

Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\ (dot dot backslash) sequence in the filename, as stored in the file repository.

Threat Intelligence

EPSS Exploit Probability
73.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-22 Path Traversal Resource Mgmt

Affected Products 2

VendorProductVersionRange
subversionsubversion* ≤1.4.4
tortoisesvntortoisesvn* ≤1.4.4

References 13

Remediation