VYPR
Unrated severityNVD Advisory· Published Dec 5, 2011· Updated Jun 16, 2026

CVE-2011-1932

CVE-2011-1932

Description

Directory traversal vulnerability in io/filesystem/filesystem.cc in Widelands before 15.1 might allow remote attackers to overwrite arbitrary files via . (dot) characters in a pathname that is used for a file transfer in an Internet game.

Affected products

21
  • Widelands/Widelands21 versions
    cpe:2.3:a:widelands:widelands:-:build1:*:*:*:*:*:*+ 20 more
    • cpe:2.3:a:widelands:widelands:-:build1:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build10:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build10_release_candidate:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build11:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build11_release_candidate:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build12:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build12_release_candidate:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build13:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build13_release_candidate:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build13_release_candidate2:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build14:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build14_release_candidate:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build2:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build3:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build4:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build5:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build6:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build7:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build8:*:*:*:*:*:*
    • cpe:2.3:a:widelands:widelands:-:build9:*:*:*:*:*:*
    • (no CPE)range: <15.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.