Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to upload and overwrite arbitrary files via a ..\ (dot dot backslash) sequence in the destination filename argument to sub-function 8 in the rxrReceiveFileFromServer command.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-10-01T20:00:00
Updated: 2018-10-15T20:57:01
Reserved: 2007-09-20T00:00:00
Link: CVE-2007-5005
JSON object: View
NVD Information
Status : Modified
Published: 2007-10-01T20:17:00.000
Modified: 2021-04-08T13:31:08.817
Link: CVE-2007-5005
JSON object: View
Redhat Information
No data.
CWE