Описание
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.
Ссылки
- ExploitPatchThird Party Advisory
- ExploitPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:gdraheim:zziplib:0.13.69:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00593
Низкий
5.5 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 5.5
ubuntu
почти 7 лет назад
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.
CVSS3: 5.5
redhat
почти 7 лет назад
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.
CVSS3: 5.5
debian
почти 7 лет назад
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers ...
EPSS
Процентиль: 68%
0.00593
Низкий
5.5 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-22