search

mdnt2mdnt / foe-project

Automatically exported from code.google.com/p/foe-project
0 stars 0 forks source link

Client allows overwriting of arbitrary files (as long as then end in .rss) #5

Open GoogleCodeExporter opened 8 years ago

GoogleCodeExporter commented 8 years ago 
This is kind of a silly issue, but on 
http://code.google.com/p/foe-project/source/browse/trunk/FOE/foe2010-current/Cli
ent/FoeClientMessage.cs#290, a malicious message could insert directory 
traversal paths (e.g. "..") to overwrite arbitrary files as the user running 
the client, as long as those file names end in ".rss." 

Minus the ".rss" requirement I would consider this to be a real security issue, 
but unless there's a way to get rid of that .rss extension that I'm not seeing, 
this is a pretty minor problem.

Original issue reported on code.google.com by dnl.mr...@gmail.com on 14 Mar 2011 at 4:47

GoogleCodeExporter commented 8 years ago 
Er, as long as *they* end in .rss.

Original comment by dnl.mr...@gmail.com on 14 Mar 2011 at 4:48