CVE-2023-29586
Description
Code Sector TeraCopy 3.9.7 does not perform proper access validation on the source folder during a copy operation. This leads to Arbitrary File Read by allowing any user to copy any directory in the system to a directory they control. NOTE: the Supplier disputes this because only admin users can copy arbitrary folders, and because the 143984 reference is about a different concern (unrelated to directory copying) that was fixed in 3.5b.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
TeraCopy 3.9.7 allows low-privileged users to read arbitrary files by copying protected folders to a user-controlled location.
Vulnerability
TeraCopy version 3.9.7 fails to enforce proper access validation on the source folder during a copy operation. This allows any user to copy any directory on the system (including those with restricted access) to a destination they control, leading to arbitrary file read. The supplier disputes the finding, claiming only admin users can trigger the issue, but the official description states otherwise [2].
Exploitation
An attacker must have a local user account on the system. No special privileges are required. The attacker launches TeraCopy and selects a protected folder as the source and a publicly writable folder as the destination. The copy operation proceeds without checking whether the user has read access to the source directory [2].
Impact
Successful exploitation allows an unprivileged attacker to read any file on the system, including system files, configuration files, and other users' private data. This constitutes a violation of confidentiality, though integrity and availability are not directly affected. The attacker gains no additional privileges beyond the ability to read arbitrary files [2].
Mitigation
According to the vendor, the issue was resolved in TeraCopy version 3.5b [2]. Users running version 3.9.7 or any version prior to the fix should upgrade to the latest patched release. No workarounds are provided. This CVE is not listed on CISA's Known Exploited Vulnerabilities catalog.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Code Sector/TeraCopydescription
- Range: 3.9.7
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
4News mentions
0No linked articles in our index yet.