MitreCVELIST:CVE-2006-3178

HistoryJun 23, 2006 - 12:00 a.m.

CVE-2006-3178

2006-06-2300:00:00

mitre

www.cve.org

AI Score

6.6

Confidence

Low

EPSS

0.006

Percentile

77.8%

JSON

Directory traversal vulnerability in extract_chmLib example program in CHM Lib (chmlib) before 0.38 allows remote attackers to overwrite arbitrary files via a CHM archive containing files with a … (dot dot) in their filename.

References

morte.jedrea.com/~jedwin/projects/chmlib/

secunia.com/advisories/20734

secunia.com/advisories/21406

securitytracker.com/id?1016343

www.debian.org/security/2006/dsa-1144

www.osvdb.org/26636

www.securityfocus.com/bid/18511

www.vupen.com/english/advisories/2006/2430

exchange.xforce.ibmcloud.com/vulnerabilities/27278