CVE-2007-3846
Directory traversal vulnerability in Subversion before 1.4.5, as used by TortoiseSVN before 1.4.5 and possibly other products, when run on Windows-based systems, allows remote authenticated users to overwrite and create arbitrary files via a .. (dot dot backslash) sequence in the filename, as stored in the file repository.
Date published : 2007-08-28
http://www.securityfocus.com/bid/25468
http://subversion.tigris.org/servlets/NewsItemView?newsItemID=1941