Directory traversal vulnerability in SpeedProject Squeez 5.1, as used in (1) ZipStar 5.1 and (2) SpeedCommander 11.01.4450, allows remote attackers to overwrite arbitrary files via unspecified manipulations in a (1) JAR or (2) ZIP archive.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Speedcommander | Speedproject | 11.01_build4450 (including) | 11.01_build4450 (including) |
| Squeez | Speedproject | 5.1 (including) | 5.1 (including) |
| Zipstar | Speedproject | 5.1 (including) | 5.1 (including) |
References
- http://secunia.com/advisories/19006
- http://www.osvdb.org/23465
- http://www.securityfocus.com/archive/1/425973/100/0/threaded
- http://www.securityfocus.com/bid/16807
- http://www.vupen.com/english/advisories/2006/0731
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24909
- http://secunia.com/advisories/19006
- http://www.osvdb.org/23465
- http://www.securityfocus.com/archive/1/425973/100/0/threaded
- http://www.securityfocus.com/bid/16807
- http://www.vupen.com/english/advisories/2006/0731
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24909