CVE-2004-0916

描述

Directory traversal vulnerability in cabextract before 1.1 allows remote attackers to overwrite arbitrary files via a cabinet file containing .. (dot dot) sequences in a filename.

受影響套件(2)

• Debian/cabextractfrom 0, < 1.1-1
• Debian/cabextractfrom 0, < 0.2-2b

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-0916