2 matches found
CVE-2018-0659
AttacheCase (open source file encryption software) has a directory traversal vulnerability CVE-2018-0659 due to how it processes filenames in ATC files. Affected versions are 2.8.4.0 and earlier and 3.3.0.0 and earlier. Exploitation via a crafted ATC file can create or overwrite arbitrary files d...
JVN#62121133: Multiple directory traversal vulnerabilities in AttacheCase
AttacheCase is an open source file encryption software provided by HiBARA Software. AttacheCase contains a directory traversal vulnerability CWE-22 due to a flaw in processing filenames in ATC files. Impact Decrypting a crafted ATC file may result in creation of an arbitrary file or overwriting o...