Lucene search
K

7 matches found

Cvelist
Cvelist
added 2006/01/25 9:0 p.m.26 views

CVE-2005-4667

Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...

7.4AI score0.01481EPSS
Exploits1References13
Debian CVE
Debian CVE
added 2006/01/25 9:0 p.m.25 views

CVE-2005-4667

Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...

3.7CVSS6.6AI score0.01481EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2005/12/31 5:0 a.m.26 views

CVE-2005-4667

Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long...

3.7CVSS6.2AI score0.01481EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.32 views

Debian DSA-344-2 : unzip - directory traversal

A directory traversal vulnerability in UnZip 5.50 allows attackers to bypass a check for relative pathnames '../' by placing certain invalid characters between the two '.' characters. The fix which was implemented in DSA-344-1 may not have protected against all methods of exploiting this...

2.6CVSS5.4AI score0.22526EPSS
Exploits1References2
NVD
NVD
added 2003/06/16 4:0 a.m.18 views

CVE-2003-0282

Directory traversal vulnerability in UnZip 5.50 allows attackers to overwrite arbitrary files via invalid characters between two . dot characters, which are filtered and result in a ".." sequence...

2.6CVSS6.4AI score0.22526EPSS
Exploits1References15
CVE
CVE
added 2003/05/14 4:0 a.m.66 views

CVE-2003-0282

CVE-2003-0282 affects UnZip 5.50 and earlier and is a directory traversal vulnerability where invalid characters placed between two '.' characters are filtered to produce a '..' sequence, allowing overwriting of arbitrary files during archive extraction. Public references in multiple advisories (...

2.6CVSS6.3AI score0.22526EPSS
Exploits1References15Affected Software1
Debian CVE
Debian CVE
added 2003/05/14 4:0 a.m.46 views

CVE-2003-0282

Directory traversal vulnerability in UnZip 5.50 allows attackers to overwrite arbitrary files via invalid characters between two . dot characters, which are filtered and result in a ".." sequence...

2.6CVSS5.5AI score0.22526EPSS
Exploits1
Rows per page
Query Builder