30 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-10860
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - perl-archive-zip is vulnerable to a directory traversal in Archive::Zip. It was found that the Archive::Zip module did not properly sanitize paths while...
RHEL 5 : perl-archive-zip (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - perl-Archive-Zip: Directory traversal in Archive::Zip CVE-2018-10860 Note that Nessus has not tested for this issue...
RHEL 7 : perl-archive-zip (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - perl-Archive-Zip: Directory traversal in Archive::Zip CVE-2018-10860 Note that Nessus has not tested for this issue...
Mageia: Security Advisory (MGASA-2018-0311)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:2386-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:2388-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:2385-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Perl archive zip Directory Traversal (CVE-2018-10860)
A directory traversal vulnerability exists in Perl archive zip. Successful exploitation of this vulnerability would allow a remote attacker to list directories on the affected system...
openSUSE Security Update : perl-Archive-Zip (openSUSE-2019-628)
This update for perl-Archive-Zip fixes the following security issue : - CVE-2018-10860: Prevent directory traversal caused by not properly sanitizing paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could have used this flaw to write or...
Fedora 28 : perl-Archive-Zip (2018-6abfa0012f)
This release fixes a directory and symbolic link traversal vulnerability in Archive::Zip::Archive Perl module that allows an attacker to writite into an arbitrary file accesible by a local user. Note that Tenable Network Security has extracted the preceding description block directly from the...
Security Bulletin: Vyatta 5600 vRouter Software Patches - Release 1801r
Summary Summary AT&T has released version 1801r for the Vyatta 5600. Advisory CVEs: CVE-2018-10860 CVE-2018-16741 CVE-2018-14618 CVE-2018-15473 CVE-2018-5391 CVE-2018-14679 CVE-2018-14680 CVE-2018-14681 CVE-2018-14682 Details of this release can be found at...
Ubuntu: Security Advisory (USN-3703-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-4300-1 : libarchive-zip-perl - security update
It was discovered that Archive::Zip, a perl module for manipulation of ZIP archives, is prone to a directory traversal vulnerability. An attacker able to provide a specially crafted archive for processing can take advantage of this flaw to overwrite arbitrary files during archive extraction. C...
[SECURITY] [DSA 4300-1] libarchive-zip-perl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4300-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 22, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4300-1] libarchive-zip-perl security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4300-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 22, 2018 https://www.debian.org/security/faq -...
openSUSE Security Update : perl-Archive-Zip (openSUSE-2018-904)
This update for perl-Archive-Zip fixes the following security issue : - CVE-2018-10860: Prevent directory traversal caused by not properly sanitizing paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could have used this flaw to write or...
Security update for perl-Archive-Zip (moderate)
This update for perl-Archive-Zip fixes the following security issue: - CVE-2018-10860: Prevent directory traversal caused by not properly sanitizing paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could have used this flaw to write or...
SUSE SLES11 Security Update : perl-Archive-Zip (SUSE-SU-2018:2388-1)
This update for perl-Archive-Zip fixes the following security issue : - CVE-2018-10860: Prevent directory traversal caused by not properly sanitizing paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could have used this flaw to write or...
SUSE-SU-2018:2386-1 Security update for perl-Archive-Zip
This update for perl-Archive-Zip fixes the following security issue: - CVE-2018-10860: Prevent directory traversal caused by not properly sanitizing paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could have used this flaw to write or...
SUSE-SU-2018:2385-1 Security update for perl-Archive-Zip
This update for perl-Archive-Zip fixes the following security issue: - CVE-2018-10860: Prevent directory traversal caused by not properly sanitizing paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could have used this flaw to write or...