Directory traversal

Directory traversal vulnerability in e-merge WinAce 2.6 and earlier allows remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a 1 zip or 2 tar archive...

CVE-2006-0981

Directory traversal vulnerability in e-merge WinAce 2.6 and earlier allows remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a 1 zip or 2 tar archive...

Directory traversal

Multiple directory traversal vulnerabilities in Allume StuffIt Standard and Deluxe 9.0, ZipMagic Deluxe 9.0, and StuffIt Expander 9.0.0.21 Engine 9.0.0.21 allow remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a 1 zip or 2 tar archive...

Directory traversal

Directory traversal vulnerability in PEAR::ArchiveTar 1.2, and other versions before 1.3.2, allows remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a TAR archive...

Directory traversal

Directory traversal vulnerability in zip.lib.php 0.1.1 in PEAR::ArchiveZip allows remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a ZIP archive...

CVE-2006-0931

Directory traversal vulnerability in PEAR::ArchiveTar 1.2, and other versions before 1.3.2, allows remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a TAR archive...

CVE-2006-0926

CVE-2006-0926 describes multiple directory traversal vulnerabilities in Allume StuffIt Standard/Deluxe 9.0, ZipMagic Deluxe 9.0, and StuffIt Expander 9.0.0.21 Engine 9.0.0.21, allowing remote attackers to create and overwrite arbitrary files via crafted pathnames in a (1) zip or (2) tar archive. ...

CVE-2006-0932

Directory traversal vulnerability in zip.lib.php 0.1.1 in PEAR::ArchiveZip allows remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a ZIP archive...

CVE-2006-0926

Multiple directory traversal vulnerabilities in Allume StuffIt Standard and Deluxe 9.0, ZipMagic Deluxe 9.0, and StuffIt Expander 9.0.0.21 Engine 9.0.0.21 allow remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a 1 zip or 2 tar archive...

Path traversal

Absolute path traversal vulnerability in docs/showdocs.php in Coppermine Photo Gallery 1.4.3 and earlier allows remote attackers to include arbitrary files via the f parameter, and possibly remote files using UNC share pathnames...

CVE-2006-0873

CVE-2006-0873 affects Coppermine Photo Gallery (docs/showdoc.php, f parameter). It is an absolute path traversal / local file inclusion vulnerability allowing arbitrary file inclusion, potentially from Windows UNC shares. Affected: Coppermine Photo Gallery 1.4.3 and earlier. Root cause: unsanitiz...

thttpd ssi file retrieval

The remote HTTP server allows an attacker to read arbitrary files on the remote web server, by employing a weakness in an included ssi package, by prepending pathnames with %2e%2e/ hex-encoded ../ to the pathname. Example: GET /cgi-bin/ssi//%2e%2e/%2e%2e/etc/passwd will return /etc/passwd...

DEBIAN-CVE-2004-1010

Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname...

security flaw

Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname...

CVE-2004-0303

OWLS 1.0 allows remote attackers to retrieve arbitrary files via absolute pathnames in 1 the file parameter in /glossaries/index.php, 2 the filename parameter in /readings/index.php, or 3 the filename parameter in /multiplechoice/resultsignore.php, as demonstrated using /etc/passwd...

security flaw

Buffer overflow in LHA allows remote attackers to execute arbitrary code via long pathnames in LHarc format 2 headers for a .LHZ archive, as originally demonstrated using the "x" option but also exploitable through "l" and "v", and fixed in header.c, a different issue than CVE-2004-0771...

Mandrake Linux Security Advisory : cvs (MDKSA-2004:028)

Sebastian Krahmer from the SUSE security team discovered a remotely exploitable vulnerability in the CVS client. When doing a cvs checkout or update over a network, the client accepts absolute pathnames in the RCS diff files. A maliciously configured server could then create any file with content...

SuSE-SA:2004:008: cvs

The remote host is missing the patch for the advisory SuSE-SA:2004:008 cvs. The Concurrent Versions System CVS offers tools which allow developers to share and maintain large software projects. During the analyzation of the CVS protocol and their implementation, the SuSE Security Team discovered ...

Fedora Core 1 : cvs-1.11.15-1 (2004-110)

The client for CVS before 1.11.15 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates. Updated packages were made available in April 2004 however the original update notification email did not make it ...

RHEL 2.1 / 3 : cvs (RHSA-2004:153)

Updated cvs packages that fix a client vulnerability that could be exploited by a malicious server are now available. Updated Apr 19 2004 The description text has been updated to include CVE-2004-0405 which was also fixed but not mentioned when this advisory was first released. There has been no...