Unrated severityNVD Advisory· Published Dec 12, 2007· Updated Jun 16, 2026
CVE-2007-6317
CVE-2007-6317
Description
Multiple directory traversal vulnerabilities in BarracudaDrive Web Server before 3.8 allow (1) remote attackers to read arbitrary files via certain ..\ (dot dot backslash) sequences in the URL path, or (2) remote authenticated users to delete arbitrary files or create arbitrary directories via a ..\ (dot dot backslash) sequence in the dir parameter to /drive/c/bdusers/USER/.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- cpe:2.3:a:real_time_logic:barracudadrive_web_server:3.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:real_time_logic:barracudadrive_web_server_home_server:3.7.2:*:*:*:*:*:*:*
- Range: <3.8
Patches
Vulnerability mechanics
References
5- aluigi.altervista.org/adv/barradrive-adv.txtnvdExploit
- www.securityfocus.com/bid/26805nvdExploitPatch
- secunia.com/advisories/28032nvdVendor Advisory
- securityreason.com/securityalert/3434nvd
- www.securityfocus.com/archive/1/484833/100/0/threadednvd
News mentions
0No linked articles in our index yet.