CVE-2011-1595 (retired)

Priority
Description
Directory traversal vulnerability in the disk_create function in disk.c in
rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP
servers to read or overwrite arbitrary files via a .. (dot dot) in a
pathname.
Notes
 jdstrand> PoC in bug
Assigned-to
mdeslaur
More Information

Updated: 2019-03-26 11:56:19 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)