CVE-2005-1228

EPSS 4.6%

Published: 5/2/2005Modified: 4/28/2026

Also known as:DEBIAN-CVE-2005-1228

Description

Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.

Affected packages (1)

Debian/gzipfrom 0, < 1.3.5-10

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-1228