CVE-2004-0916 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2004-0916
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0916

Description: Directory traversal vulnerability in cabextract before 1.1 allows remote attackers to overwrite arbitrary files via a cabinet file containing .. (dot dot) sequences in a filename.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/17766 SAID Secunia Advisory: SA12882 DEBIAN http://www.debian.org/security/2004/dsa-574 CONFIRM http://www.kyz.uklinux.net/cabextract.php#changes BID 11460

Return to the previous page.