The filesystem storage backend in Radicale before 1.1 on Windows allows remote attackers to read or write to arbitrary files via a crafted path, as demonstrated by /c:/file/ignore.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2016-02-03T15:00:00
Updated: 2016-11-25T19:57:01
Reserved: 2016-01-07T00:00:00
Link: CVE-2016-1505
JSON object: View
NVD Information
Status : Modified
Published: 2016-02-03T18:59:07.807
Modified: 2016-11-28T19:59:55.070
Link: CVE-2016-1505
JSON object: View
Redhat Information
No data.
CWE