CVE Vulnerabilities

CVE-2006-0926

Published: Feb 28, 2006 | Modified: Oct 18, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.6 LOW
AV:N/AC:H/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Multiple directory traversal vulnerabilities in Allume StuffIt Standard and Deluxe 9.0, ZipMagic Deluxe 9.0, and StuffIt Expander 9.0.0.21 Engine 9.0.0.21 allow remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a (1) zip or (2) tar archive.

Affected Software

Name Vendor Start Version End Version
Stuffit_deluxe Smithmicro 9.0 9.0
Stuffit_standard Smithmicro 9.0 9.0
Stuffit_expander Smithmicro 9.0.0.21_engine_9.0.0.21 9.0.0.21_engine_9.0.0.21
Zipmagic_deluxe Smithmicro 9.0 9.0

References