CVE-2007-2058 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-2058

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Directory traversal vulnerability in Acubix PicoZip 4.02 allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in the file path in an (1) GZ, (2) TAR, (3) RAR, (4) JAR, or (5) ZIP archive.

Affected Software

Name	Vendor	Start Version	End Version
Picozip	Picozip	4.02 (including)	4.02 (including)

References

http://secunia.com/advisories/24868
http://www.bugtraq.ir/articles/advisory/picozip_directory_traversal/9
http://www.securityfocus.com/bid/23471
http://www.vupen.com/english/advisories/2007/1377
https://exchange.xforce.ibmcloud.com/vulnerabilities/33639