Loading
Generated remediation guidance and an executive summary. No account required.
Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a ..\ (dot dot backslash) sequence in the filename, as stored in the file repository.
Use CWE-22, Subversion vendor hub and Subversion product page to widen CVE-2007-3846 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2004-0413, CVE-2009-2411 and CVE-2004-0397 for nearby disclosures in the same product family.