Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2016/12/06 12:0 a.m.22 views

GLSA-201612-15 : ARJ: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201612-15 ARJ: Multiple vulnerabilities Multiple vulnerabilities have been discovered in ARJ. Please review the CVE identifiers referenced below for details. Impact : An attacker, using a specially crafted ARJ archive, could...

7.5CVSS6.1AI score0.05889EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2015/04/13 12:0 a.m.28 views

Mandriva Linux Security Advisory : arj (MDVSA-2015:201)

Multiple vulnerabilities has been found and corrected in arj : Jakub Wilk discovered that arj follows symlinks created during unpacking of an arj archive. A remote attacker could use this flaw to perform a directory traversal attack if a user or automated system were tricked into processing a...

7.5CVSS6.3AI score0.05889EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2015/04/11 12:0 a.m.27 views

Fedora Update for arj FEDORA-2015-5603

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.05889EPSS
Exploits2References2
OSV
OSV
added 2015/04/08 6:59 p.m.8 views

CVE-2015-0557

Open-source ARJ archiver 3.10.22 does not properly remove leading slashes from paths, which allows remote attackers to conduct absolute path traversal attacks and write to arbitrary files via multiple leading slashes in a path in an ARJ archive...

6.6AI score
Exploits0References10
CVE
CVE
added 2015/04/08 6:0 p.m.66 views

CVE-2015-0557

ARJ archiver 3.10.22 is affected by CVE-2015-0557: ARJ does not fully strip leading slashes from file paths in archives, enabling absolute path traversal and potential writing to arbitrary files when processing specially crafted ARJ archives. Impact observed across multiple distributions (e.g., D...

5.8CVSS6.6AI score0.03367EPSS
Exploits1References10Affected Software1
OSV
OSV
added 2015/04/08 12:0 a.m.17 views

DLA-188-1 arj - security update

Bulletin has no description...

7.5CVSS5.9AI score0.05889EPSS
Exploits2
Kaspersky
Kaspersky
added 2015/04/08 12:0 a.m.54 views

KLA10539 Multiple vulnerabilities in Open-source ARJ archiver

Buffer overflow, improper strings restriction and other unknown vulnerabilities were found in Open-source ARJ archiver. By exploiting these vulnerabilities malicious users can cause denial of service, execute arbitrary code or write to arbitrary local files. These vulnerabilities can be exploited...

7.5CVSS7.7AI score0.05889EPSS
Exploits2References2
securityvulns
securityvulns
added 2015/04/07 12:0 a.m.58 views

[SECURITY] [DSA 3213-1] arj security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3213-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 06, 2015 http://www.debian.org/security/faq -...

7.5CVSS2.1AI score0.05889EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2015/04/07 12:0 a.m.27 views

Debian DSA-3213-1 : arj - security update

Multiple vulnerabilities have been discovered in arj, an open source version of the arj archiver. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2015-0556 Jakub Wilk discovered that arj follows symlinks created during unpacking of an arj archive. A remo...

7.5CVSS6.1AI score0.05889EPSS
Exploits2References11
Debian
Debian
added 2015/04/06 3:45 p.m.34 views

[SECURITY] [DSA 3213-1] arj security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3213-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 06, 2015 http://www.debian.org/security/faq -...

7.5CVSS2.5AI score0.05889EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/04/05 12:0 a.m.30 views

Debian: Security Advisory (DSA-3213-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.05889EPSS
Exploits2References3
Rows per page
Query Builder