Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:11633
HistoryJan 15, 2019 - 9:05 a.m.

Directory Traversal

2019-01-1509:05:18
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

JSON

openjdk is vulnerable to directory traversal. A remote attacker is able to create or overwrite arbitrary files on the system using a malicious JAR archive containing files with ../ characters. The malicious file operations will be performed when the JAR archive is extracted

References

Related

cve 2
f5 1
freebsd 1
nessus 31
openvas 24
ubuntucve 4
securityvulns 2
debiancve 1
prion 1
redhat 12
veracode 11
archlinux 6
oraclelinux 4
mageia 1
centos 4
amazon 3
cve
cve
CVE-2005-1080
2005-05-02 04:00:00
CVE-2010-0831
2010-06-18 18:30:00
f5
f5
K60565503 : OpenJDK vulnerability CVE-2005-1080
2017-10-04 00:00:00
freebsd
freebsd
jdk -- jar directory traversal vulnerability
2005-04-11 00:00:00
nessus
nessus
FreeBSD : jdk -- jar directory traversal vulnerability (18e5428f-ae7c-11d9-837d-000e0c2e438a)
2005-07-13 00:00:00
Mandriva Linux Security Advisory : fastjar (MDVSA-2010:122)
2010-06-23 00:00:00
Oracle Linux 5 : gcc (ELSA-2011-0025)
2023-09-07 00:00:00
openvas
openvas
FreeBSD Ports: jdk
2008-09-04 00:00:00
FreeBSD Ports: jdk
2008-09-04 00:00:00
Mandriva Update for fastjar MDVSA-2010:122 (fastjar)
2010-06-25 00:00:00
ubuntucve
ubuntucve
CVE-2015-0480
2015-04-15 00:00:00
CVE-2005-1080
2005-05-02 00:00:00
CVE-2010-0831
2010-05-25 00:00:00
securityvulns
securityvulns
fastjar archiver directory traversal
2010-06-23 00:00:00
[ MDVSA-2010:122 ] fastjar
2010-06-23 00:00:00
debiancve
debiancve
CVE-2010-0831
2010-06-18 18:30:00
prion
prion
Directory traversal
2010-06-18 18:30:00
redhat
redhat
(RHSA-2015:0807) Important: java-1.7.0-openjdk security update
2015-04-14 00:00:00
(RHSA-2015:0808) Important: java-1.6.0-openjdk security update
2015-04-14 00:00:00
(RHSA-2015:0806) Critical: java-1.7.0-openjdk security update
2015-04-14 00:00:00
veracode
veracode
Sandbox Protection Bypass
2019-05-02 05:13:14
Sandbox Protection Bypass
2019-05-02 05:13:14
Sandbox Restrictions Bypass
2019-05-02 05:13:14
archlinux
archlinux
jre7-openjdk-headless: multiple issues
2015-04-17 00:00:00
jre7-openjdk: multiple issues
2015-04-17 00:00:00
jdk7-openjdk: multiple issues
2015-04-17 00:00:00
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2015-04-15 00:00:00
java-1.7.0-openjdk security update
2015-04-15 00:00:00
java-1.6.0-openjdk security update
2015-04-15 00:00:00
mageia
mageia
Updated java-1.7.0-openjdk packages fix security vulnerabilities
2015-04-15 20:22:53
centos
centos
java security update
2015-04-15 11:08:38
java security update
2015-04-15 11:47:27
java security update
2015-04-15 11:09:51
amazon
amazon
Important: java-1.6.0-openjdk
2015-04-23 00:44:00
Important: java-1.7.0-openjdk
2015-04-23 00:44:00
Important: java-1.8.0-openjdk
2015-05-05 15:44:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

JSON
Related for VERACODE:11633
cve2f51freebsd1nessus31openvas24ubuntucve4securityvulns2debiancve1prion1redhat12veracode11archlinux6oraclelinux4mageia1centos4amazon3