Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2004-08-18 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2004-0235
Mitre link : CVE-2004-0235
CVE.ORG link : CVE-2004-0235
JSON object : View
Products Affected
rarlab
- winrar
clearswift
- mailsweeper
f-secure
- f-secure_internet_security
- f-secure_anti-virus
- f-secure_for_firewalls
- internet_gatekeeper
- f-secure_personal_express
sgi
- propack
winzip
- winzip
redhat
- lha
- fedora_core
tsugio_okamoto
- lha
stalker
- cgpmcafee
CWE