exploitDog

GHSA-h25c-q8jq-gr57

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Directory traversal vulnerability in the gcab_folder_extract function in libgcab/gcab-folder.c in gcab 0.4 allows remote attackers to write to arbitrary files via crafted path in a CAB file, as demonstrated by "\tmp\moo."

Directory traversal vulnerability in the gcab_folder_extract function in libgcab/gcab-folder.c in gcab 0.4 allows remote attackers to write to arbitrary files via crafted path in a CAB file, as demonstrated by "\tmp\moo."

Ссылки

EPSS

Процентиль: 72%

0.00737

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2015-0552

ubuntu

около 11 лет назад

Directory traversal vulnerability in the gcab_folder_extract function in libgcab/gcab-folder.c in gcab 0.4 allows remote attackers to write to arbitrary files via crafted path in a CAB file, as demonstrated by "\tmp\moo."

CVE-2015-0552

nvd

около 11 лет назад

Directory traversal vulnerability in the gcab_folder_extract function in libgcab/gcab-folder.c in gcab 0.4 allows remote attackers to write to arbitrary files via crafted path in a CAB file, as demonstrated by "\tmp\moo."

CVE-2015-0552

debian

около 11 лет назад

Directory traversal vulnerability in the gcab_folder_extract function ...

EPSS

Процентиль: 72%

0.00737

Низкий

CVE ID

Дефекты

CWE-22