3 matches found
CVE-2001-1270
CVE-2001-1270 affects the PKZip console tool (pkzipc) 4.00 and earlier. The vulnerability is a directory traversal during archive extraction when using the -rec option, allowing an attacker to overwrite arbitrary files via a .. path in archived filenames. The available documents confirm the affec...
CVE-2001-1270
Directory traversal vulnerability in the console version of PKZip pkzipc 4.00 and earlier allows attackers to overwrite arbitrary files during archive extraction with the -rec recursive option via a .. dot dot attack on the archived files...
CVE-2001-1270
Directory traversal vulnerability in the console version of PKZip pkzipc 4.00 and earlier allows attackers to overwrite arbitrary files during archive extraction with the -rec recursive option via a .. dot dot attack on the archived files...