Lucene search
K

11 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:20 a.m.3 views

SUSE CVE-2015-2782

Buffer overflow in Open-source ARJ archiver 3.10.22 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted ARJ archive...

7.5CVSS8.2AI score0.05889EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/12/06 12:0 a.m.22 views

GLSA-201612-15 : ARJ: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201612-15 ARJ: Multiple vulnerabilities Multiple vulnerabilities have been discovered in ARJ. Please review the CVE identifiers referenced below for details. Impact : An attacker, using a specially crafted ARJ archive, could...

7.5CVSS6.1AI score0.05889EPSS
Exploits2References4
Mageia
Mageia
added 2015/04/15 9:1 a.m.37 views

Updated arj packages fix security vulnerabilities

Updated arj package fixes security vulnerabilities: ARJ follows symlinks when unpacking stuff, even the symlinks that were created during the same unpack process, making it vulnerable to a directory traversal CVE-2015-0556. To protect from directory traversals, ARJ strips leading slash from the...

7.5CVSS6.8AI score0.05889EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2015/04/13 12:0 a.m.28 views

Mandriva Linux Security Advisory : arj (MDVSA-2015:201)

Multiple vulnerabilities has been found and corrected in arj : Jakub Wilk discovered that arj follows symlinks created during unpacking of an arj archive. A remote attacker could use this flaw to perform a directory traversal attack if a user or automated system were tricked into processing a...

7.5CVSS6.3AI score0.05889EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2015/04/11 12:0 a.m.27 views

Fedora Update for arj FEDORA-2015-5603

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.05889EPSS
Exploits2References2
OSV
OSV
added 2015/04/08 12:0 a.m.16 views

DLA-188-1 arj - security update

Bulletin has no description...

7.5CVSS5.9AI score0.05889EPSS
Exploits2
Kaspersky
Kaspersky
added 2015/04/08 12:0 a.m.53 views

KLA10539 Multiple vulnerabilities in Open-source ARJ archiver

Buffer overflow, improper strings restriction and other unknown vulnerabilities were found in Open-source ARJ archiver. By exploiting these vulnerabilities malicious users can cause denial of service, execute arbitrary code or write to arbitrary local files. These vulnerabilities can be exploited...

7.5CVSS7.7AI score0.05889EPSS
Exploits2References2
securityvulns
securityvulns
added 2015/04/07 12:0 a.m.58 views

[SECURITY] [DSA 3213-1] arj security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3213-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 06, 2015 http://www.debian.org/security/faq -...

7.5CVSS2.1AI score0.05889EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2015/04/07 12:0 a.m.27 views

Debian DSA-3213-1 : arj - security update

Multiple vulnerabilities have been discovered in arj, an open source version of the arj archiver. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2015-0556 Jakub Wilk discovered that arj follows symlinks created during unpacking of an arj archive. A remo...

7.5CVSS6.1AI score0.05889EPSS
Exploits2References11
Debian
Debian
added 2015/04/06 3:45 p.m.34 views

[SECURITY] [DSA 3213-1] arj security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3213-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 06, 2015 http://www.debian.org/security/faq -...

7.5CVSS2.5AI score0.05889EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/04/05 12:0 a.m.30 views

Debian: Security Advisory (DSA-3213-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.05889EPSS
Exploits2References3
Rows per page
Query Builder