CVE-2013-4510

Advisory

Directory traversal vulnerability in the client in Tryton 3.0.0, as distributed before 20131104 and earlier, allows remote servers to write arbitrary files via path separators in the extension of a report.

Affected package

Affected versions

Fixed versions

Vulnerability changelog

This vulnerability has no description

Resources

• https://nvd.nist.gov/vuln/detail/CVE-2013-4510
• http://hg.tryton.org/tryton/rev/357d0a4d9cb8
• http://www.tryton.org/posts/security-release-for-issue3446.html
• http://www.debian.org/security/2013/dsa-2791
• http://www.openwall.com/lists/oss-security/2013/11/04/21
• https://bugs.tryton.org/issue3446
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4510