UnZip Double Dot Arbitrary File Overwrite

2001-07-02T00:00:00
ID OSVDB:8101
Type osvdb
Reporter 3apa3a(3APA3A@security.nnov.ru)
Modified 2001-07-02T00:00:00

Description

Vulnerability Description

UnZip contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when an archived file contains double dot (..) sequences in the file name, which could allow a malicious user to overwrite arbitrary files on the system resulting in a loss of integrity.

Solution Description

Upgrade to version 5.50 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

UnZip contains a flaw that may allow a malicious user to overwrite arbitrary files. The issue is triggered when an archived file contains double dot (..) sequences in the file name, which could allow a malicious user to overwrite arbitrary files on the system resulting in a loss of integrity.

References:

Vendor URL: http://www.info-zip.org/UnZip.html Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Other Advisory URL: http://archives.neohapsis.com/archives/bugtraq/2002-09/0331.html Other Advisory URL: http://www.security.nnov.ru/advisories/archdt.asp ISS X-Force ID: 10224 CVE-2001-1268 CIAC Advisory: n-041 Bugtraq ID: 5835