Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.27 views

Fedora Update for gcab FEDORA-2015-0264

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS6.6AI score0.02791EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/06/02 12:0 a.m.20 views

Fedora 21 : gcab-0.4-7.fc21 (2015-0264)

Security fix for CVE-2015-0552 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

6.4CVSS5.4AI score0.02791EPSS
Exploits1References3
OSV
OSV
added 2015/01/15 3:59 p.m.4 views

CVE-2015-0552

Directory traversal vulnerability in the gcabfolderextract function in libgcab/gcab-folder.c in gcab 0.4 allows remote attackers to write to arbitrary files via crafted path in a CAB file, as demonstrated by "\tmp\moo."...

6.6AI score
Exploits0References5
Debian CVE
Debian CVE
added 2015/01/15 3:0 p.m.25 views

CVE-2015-0552

Directory traversal vulnerability in the gcabfolderextract function in libgcab/gcab-folder.c in gcab 0.4 allows remote attackers to write to arbitrary files via crafted path in a CAB file, as demonstrated by "\tmp\moo."...

6.4CVSS6.6AI score0.02791EPSS
Exploits1
CVE
CVE
added 2015/01/15 3:0 p.m.51 views

CVE-2015-0552

The CVE-2015-0552 issue affects the gcab project (gcab 0.4) via the function gcab_folder_extract in libgcab/gcab-folder.c, enabling a directory traversal that allows remote attackers to write to arbitrary files in a crafted CAB file (example path). The root cause is a path handling flaw in direct...

6.4CVSS6.7AI score0.02791EPSS
Exploits1References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/01/15 12:0 a.m.23 views

openSUSE Security Update : gcab (openSUSE-SU-2015:0043-1)

This update fixes the following security issue : - CVE-2015-0552: Avoid path traversal boo911814, bgo742331, CVE-2015-0552. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2015-13. Th...

6.4CVSS5.3AI score0.02791EPSS
Exploits1References3
OSV
OSV
added 2015/01/09 4:44 p.m.2 views

MGASA-2015-0018 Updated gcab packages fix CVE-2015-0552

Updated gcab packages fix security vulnerability: Jakub Wilk reported a directory traversal vulnerability due to gcab not filtering leading slashes from paths in CAB files CVE-2015-0552...

6.4CVSS6.3AI score0.02791EPSS
Exploits1References3
Rows per page
Query Builder