Unrated severityNVD Advisory· Published Sep 17, 2007· Updated Apr 23, 2026
CVE-2007-4909
CVE-2007-4909
Description
Interpretation conflict in WinSCP before 4.0.4 allows remote attackers to perform arbitrary file transfers with a remote server via file-transfer commands in the final portion of a (1) scp, and possibly a (2) sftp or (3) ftp, URL, as demonstrated by a URL specifying login to the remote server with a username of scp, which is interpreted as an HTTP scheme name by the protocol handler in a web browser, but is interpreted as a username by WinSCP. NOTE: this is related to an incomplete fix for CVE-2006-3015.
Affected products
12cpe:2.3:a:winscp:winscp:2.0.0:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:winscp:winscp:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:3.5.5_beta:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:3.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:3.6:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:3.6.5_beta:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:3.6.6:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:3.6.7:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:3.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:3.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:4.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:winscp:winscp:4.0.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- secunia.com/advisories/26820nvdPatchVendor Advisory
- www.securityfocus.com/bid/25655nvdPatch
- securityreason.com/securityalert/3141nvd
- winscp.cvs.sourceforge.net/winscp/winscp3/core/SessionData.cppnvd
- winscp.net/eng/docs/history/nvd
- www.securityfocus.com/archive/1/479298/100/0/threadednvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/36591nvd
News mentions
0No linked articles in our index yet.