Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2004-08-18 04:00
Updated : 2023-12-10 10:17
NVD link : CVE-2004-0235
Mitre link : CVE-2004-0235
CVE.ORG link : CVE-2004-0235
JSON object : View
Products Affected
winzip
- winzip
redhat
- fedora_core
- lha
f-secure
- f-secure_personal_express
- f-secure_internet_security
- internet_gatekeeper
- f-secure_for_firewalls
- f-secure_anti-virus
stalker
- cgpmcafee
sgi
- propack
tsugio_okamoto
- lha
clearswift
- mailsweeper
rarlab
- winrar
CWE