CVE Vulnerabilities

CVE-2005-1874

Published: Jun 09, 2005 | Modified: Mar 08, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Directory traversal vulnerability in Dzip before 2.9 allows remote attackers to create arbitrary files via a filename containing a .. (dot dot) in a .dz archive.

Affected Software

Name Vendor Start Version End Version
Dzip Evan_wagner * 2.0
Dzip Evan_wagner 2.1 2.1
Dzip Evan_wagner 2.2 2.2
Dzip Evan_wagner 2.3 2.3
Dzip Evan_wagner 2.4 2.4
Dzip Evan_wagner 2.5 2.5
Dzip Evan_wagner 2.6 2.6
Dzip Evan_wagner 2.8 2.8
Dzip Evan_wagner 2.21 2.21
Dzip Evan_wagner 2.51 2.51
Dzip Evan_wagner 2.55 2.55
Dzip Evan_wagner 2.81 2.81
Dzip Evan_wagner 2.82 2.82
Dzip Evan_wagner 2.83 2.83
Dzip Evan_wagner 2.84 2.84

References