VYPR
Unrated severityNVD Advisory· Published May 24, 2011· Updated Jun 16, 2026

CVE-2011-1595

CVE-2011-1595

Description

Directory traversal vulnerability in the disk_create function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • Rdesktop/Rdesktop10 versions
    cpe:2.3:a:rdesktop:rdesktop:*:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:rdesktop:rdesktop:*:*:*:*:*:*:*:*range: <=1.6.0
    • cpe:2.3:a:rdesktop:rdesktop:1.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rdesktop:rdesktop:1.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rdesktop:rdesktop:1.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rdesktop:rdesktop:1.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rdesktop:rdesktop:1.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:rdesktop:rdesktop:1.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:rdesktop:rdesktop:1.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:rdesktop:rdesktop:1.5.0:*:*:*:*:*:*:*
    • (no CPE)range: <1.7.0

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.