New Search

UnZip 5.0 Directory Traversal Vulnerability

oval:org.mitre.oval:def:619

Directory traversal vulnerability in UnZip 5.50 allows attackers to overwrite arbitrary files via invalid characters between two . (dot) characters which are filtered and result in a ".." sequence.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Linux 9
Class:
vulnerability
Reference(s):
  • CVE-2003-0282
Product(s):
  • unzip