Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2018/01/31 12:0 a.m.28 views

Fedora 26 : poco (2018-7349a7723e)

Security fix for CVE-2017-1000472 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

6.5CVSS6.8AI score0.01681EPSS
Exploits1References2
Debian
Debian
added 2018/01/11 8:51 a.m.37 views

[SECURITY] [DSA 4083-1] poco security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4083-1 [email protected] https://www.debian.org/security/ Sebastien Delafond January 11, 2018 https://www.debian.org/security/faq -...

5.8CVSS1.6AI score0.01681EPSS
Exploits1
Cvelist
Cvelist
added 2018/01/03 8:0 p.m.26 views

CVE-2017-1000472

The ZipCommon::isValidPath function in Zip/src/ZipCommon.cpp in POCO C++ Libraries before 1.8 does not properly restrict the filename value in the ZIP header, which allows attackers to conduct absolute path traversal attacks during the ZIP decompression, and possibly create or overwrite arbitrary...

6.5AI score0.01681EPSS
Exploits1References3
CVE
CVE
added 2018/01/03 8:0 p.m.150 views

CVE-2017-1000472

POCO C++ Libraries prior to 1.8 contain a ZIP path-validation flaw in ZipCommon::isValidPath() that can allow absolute path traversal during ZIP decompression, potentially enabling creation or overwriting of arbitrary files via a crafted ZIP file. Reports across multiple distributions (Debian, Fe...

6.5CVSS6.4AI score0.01681EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder