2007-08-28 18:00:00
redhat
PUBLISHED
Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a .. (dot dot backslash) sequence in the filename, as stored in the file repository.