CVE-2007-1384
EPSS 1.6%
Description
Directory traversal vulnerability in torrent.cpp in KTorrent before 2.1.2 allows remote attackers to overwrite arbitrary files via ".." sequences in a torrent filename.
How to fix CVE-2007-1384
To remediate CVE-2007-1384, upgrade the affected package to a fixed version below.
- Debian/ktorrent—upgrade to 2.0.3+dfsg1-2.1 or later
Is CVE-2007-1384 being exploited?
Low — EPSS is 1.6%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.0.3+dfsg1-2.1