5.5 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
73.5%
Directory traversal vulnerability in the do_extract_currentfile function in miniunz.c in miniunzip in minizip before 1.1-5 might allow remote attackers to write to arbitrary files via a crafted entry in a ZIP archive.
www.openwall.com/lists/oss-security/2014/12/31/11
www.openwall.com/lists/oss-security/2015/01/03/16
www.openwall.com/lists/oss-security/2024/01/24/10
www.securityfocus.com/bid/71846
bugs.debian.org/cgi-bin/bugreport.cgi?bug=774321