8 matches found
Linux Distros Unpatched Vulnerability : CVE-2010-0831
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Directory traversal vulnerability in the extractjar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a...
Oracle Linux 5 : gcc (ELSA-2011-0025)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0025 advisory. - fix up fastjar directory traversal bugs CVE-2010-0831 Tenable has extracted the preceding description block directly from the Oracle Linux security...
openSUSE 15 Security Update : fastjar (openSUSE-SU-2021:2565-1)
The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:2565-1 advisory. - Absolute path traversal vulnerability in the extractjar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite...
Mandriva Update for fastjar MDVSA-2010:122 (fastjar)
Check for the Version of fastjar OpenVAS Vulnerability Test Mandriva Update for fastjar MDVSA-2010:122 fastjar Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Path traversal
Absolute path traversal vulnerability in the extractjar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a full pathname for a file within a .jar archive, a related issue to CVE-2010-0831. NOTE: this vulnerability exists because of an...
Directory traversal
Directory traversal vulnerability in the extractjar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a .. dot dot in a non-initial pathname component in a filename within a .jar archive, a related issue to CVE-2005-1080. NOTE: this...
CVE-2010-2322
Absolute path traversal vulnerability in the extractjar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a full pathname for a file within a .jar archive, a related issue to CVE-2010-0831. NOTE: this vulnerability exists because of an...
CVE-2010-2322
CVE-2010-2322 is a path traversal vulnerability in the FastJar 0.98 extract_jar implementation (jartool.c). The flaw allows remote attackers to create or overwrite arbitrary files inside a .jar by supplying a full pathname for a file within the archive. This issue is related to (and caused by) an...