CVE-2006-3178 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-3178
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-3178

Description: Directory traversal vulnerability in extract_chmLib example program in CHM Lib (chmlib) before 0.38 allows remote attackers to overwrite arbitrary files via a CHM archive containing files with a .. (dot dot) in their filename.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/27278 ST 1016343 SAID Secunia Advisory: SA20734 Secunia Advisory: SA21406 OSVDB 26636 DEBIAN http://www.debian.org/security/2006/dsa-1144 CONFIRM http://morte.jedrea.com/~jedwin/projects/chmlib/ BID 18511

Return to the previous page.