CVE-2017-14120

2017-09-03T20:29:00
ID CVE-2017-14120
Type cve
Reporter cve@mitre.org
Modified 2017-09-05T21:42:00

Description

unrar 0.0.1 (aka unrar-free or unrar-gpl) suffers from a directory traversal vulnerability for RAR v2 archives: pathnames of the form ../[filename] are unpacked into the upper directory.