CVE-2007-5742

{"id": "CVE-2007-5742", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:C", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 8.5, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-12-01T06:46:00.000", "references": [{"url": "http://osvdb.org/41713", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/27786", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/27920", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/27943", "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/project/shownotes.php?release_id=557098", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2007/dsa-1421", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/26626", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/4026", "source": "cve@mitre.org"}, {"url": "http://www.wesnoth.org/forum/viewtopic.php?p=264289#264289", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.wesnoth.org/forum/viewtopic.php?t=18844", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38752", "source": "cve@mitre.org"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00004.html", "source": "cve@mitre.org"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00006.html", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/41713", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/27786", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/27920", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/27943", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sourceforge.net/project/shownotes.php?release_id=557098", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.debian.org/security/2007/dsa-1421", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/26626", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2007/4026", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.wesnoth.org/forum/viewtopic.php?p=264289#264289", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.wesnoth.org/forum/viewtopic.php?t=18844", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38752", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00004.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00006.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via \"..\" sequences in unknown vectors."}, {"lang": "es", "value": "Una vulnerabilidad de salto de directorio en el preprocesador del motor WML para Wesnoth versiones 1.2.x anteriores a 1.2.8 y versiones 1.3.x anteriores a 1.3.12, permite a atacantes remotos leer archivos arbitrarios por medio de secuencias \"..\" en vectores desconocidos."}], "lastModified": "2024-11-21T00:38:35.840", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E259B064-C2F5-4F09-B07A-B7765D0EA033"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F5EAE3A3-21AD-40DE-99C7-F5756C1E86E9"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "950BB8F3-CD18-4EF9-9D62-23FB26ACDD73"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4987B9D2-193E-4AA6-99B1-DD2698E63B79"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B05F8A92-DA97-4B1B-8F58-69919C52E312"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02B29F51-C8BB-4AB9-9CEC-D4E0E21185DD"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9422C5B-1D98-437D-871C-DE144B8D5968"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBD6D024-A80D-4A34-ADEC-369500E0B398"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE312CA7-1856-400C-A391-B50F75206200"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6CFECF2-1447-41DA-AEE4-14E70154FA48"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.4.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1215EED-6612-45BC-B51C-A6E4E2BE39EB"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.4.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36D273E0-A46A-414F-AD0E-0CBE6D8A666D"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.4.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6E777D3-E4B8-44BC-9ECD-D903C9AA1D81"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.4.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2A43ED90-061D-456A-8C7D-89F1A229BAED"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.4.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA97E3DE-5157-496C-B676-09598EB1ABAA"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "648E0AD0-6E97-4973-8E58-CA9EE883C2A5"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57B7E333-AC80-4CA7-9D92-B34A17D16CDC"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55B877EC-E02B-40D1-9118-0867D5CAF91F"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA0241E3-6747-4FCF-AD27-A079C0F19DED"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.6.99.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0B58DBF-035B-42F7-9B6E-47E2A997DD11"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.6.99.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87FE42CE-1F4F-4D81-8476-F45081712C7E"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.6.99.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4CA6870-27A8-4B26-A868-3D962D992332"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.6.99.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2853429-C12F-4307-97E8-6C38EE70E304"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.6.99.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34A3D3FE-698A-4C52-AB2A-7E8C1B638051"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4058C550-F2A8-4111-8F84-1E9E84A3D7CD"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F728B1C9-E5A9-462B-ADAF-DADE7F46EA21"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1B008FA-0450-4F14-8BAC-691B02A3B22F"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B4611D18-F34F-45FF-B5BC-905A34910E58"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16DFBE2B-D7F5-4B2E-8156-563A66B5E861"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30008245-2643-44AE-B20A-63D00FE48E82"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08B302AF-B0E4-44AD-A26D-F0BBFFE79C71"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15528F7F-9927-4A50-9DF8-D40793FCCA5F"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41E06FBF-1AA7-4B55-AE1C-113D6A3990A4"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EBF41356-8F02-495A-B6E2-7E0AA23B89DD"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "730B766C-8B47-425C-A612-120989BC4E0A"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.7.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4770E27E-893D-4AE1-850B-F5405770233F"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C405A91-95C3-479B-96E2-F37A1B4FCC17"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B91CAED-E15B-4CDF-83A7-C31F9CE683E3"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D41E8097-6464-4AB5-AB8C-E7936EAB3CE5"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ABB70E7A-795E-4A7E-91CA-781F98CC9FF2"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "429500DC-7592-4870-9360-94D3699F8ABE"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CAD8D11F-F24C-4538-AD78-A9D7481C5EC0"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "62B6E6EB-4CDE-439F-9FF3-DF2CA75D17CE"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AAA4EF0F-222E-4165-BA39-FC8CC0A61147"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F32426F-86F8-44BC-BB0A-DB530372CF6A"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E4C50CF-91C8-4990-8405-C7309910A353"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C90456F-96E6-4B6B-A61A-926E01CC9C07"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.8.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BE039E74-555F-4F9B-BB9E-05C7709E03E3"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.9.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B157A699-B2A2-4E95-AB0E-A4607EFDAF71"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.9.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ECE4FB8D-EB9C-43CF-8447-39F528DB841D"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.9.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6838344-84D6-41C7-A875-C915D955E323"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.9.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7407AE95-4ADA-486E-B1FC-3282683F84B0"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.9.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8AAE5D43-38CD-4F0F-89F7-03358D47A23B"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.9.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71453BBF-B911-483C-9F44-0D3D9053EA60"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.9.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04B09BA0-35F2-43E7-8E2B-6EE03844A7D7"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:0.9.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B378A8D9-86F7-4906-8B49-5145F3A31686"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.0rcl:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6056DDDC-A194-4A30-B7E0-8BA912D9A466"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FB817AC-44E4-41CD-BD03-7B5907243FED"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBDC2E2D-581C-4B8C-8DB1-2B34A22C1788"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BDB9B969-9AEA-47B8-A2C1-D951DA5A6D90"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3ECAC12-E14D-47F6-853C-758584EB4E29"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF2E47D5-D0F1-4FC4-BC1C-9964BE85741D"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CAFC79CA-F9B0-45FD-904C-B11760E11CD4"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54937870-186F-4342-8658-6F3DA155A53D"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9488E868-BFC2-4084-802C-874E41E0AE10"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A15CBB13-9B93-4C87-A19E-56FFE900D257"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63E587C8-E7D8-4FD8-A826-D7BFAE7F270D"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0ED754F0-F2DB-445C-BE11-8525521C7B17"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B0FF72F-A313-4BF1-8E7A-BF7EAA2C5EEF"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B219D98C-B08A-4BB6-8C5B-E8978823A4C5"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18D98006-438D-4DF9-A40A-2B94CE8760EB"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.1.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07FD8E16-22EC-43BF-8ED3-09236F1C3BB5"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F4D957E-7C2A-4062-A3DF-BD02E9CA5D43"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D02358E6-E408-4A1C-A391-9F870625C5C6"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "383AD5F9-7691-4DA8-9DD6-AAB110F54B51"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51AF2340-3914-4411-BDC0-6B84548384B7"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95688481-AC1B-4A58-90D3-E6E76D9E0011"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3FF4FDE-AF17-4BCE-AFEC-CDA138B76231"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30C116EF-BD41-4820-8243-A680EEB70055"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.2.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C55CF49F-7678-41A9-8A4B-012A5B9EC78D"}, {"criteria": "cpe:2.3:a:wesnoth:wesnoth:1.2.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "952B7487-A920-40B0-BE80-8FA710149E1B"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}