Joris Guisson: >> Ktorrent >> 2.1.1 Security Vulnerabilities
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.3 only checks for the ".." string, which allows remote attackers to overwrite arbitrary files via modified ".." sequences in a torrent filename, as demonstrated by "../" sequences, due to an incomplete fix for CVE-2007-1384.
CVSS Score
6.4
EPSS Score
0.01
Published
2007-04-02