CVE-2006-0950

EPSS 0.70%

Published: 3/13/2006Modified: 4/28/2026

Also known as:DEBIAN-CVE-2006-0950

Description

unalz 0.53 allows user-assisted attackers to overwrite arbitrary files via an ALZ archive with ".." (dot dot) sequences in a filename.

Affected packages (1)

Debian/unalzfrom 0, < 0.55-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-0950