Directory traversal vulnerability in rar 2.02 and earlier allows attackers to overwrite arbitrary files during archive extraction via a .. (dot dot) attack on archived filenames.
References
Link | Resource |
---|---|
http://online.securityfocus.com/archive/1/196445 | Exploit Patch Vendor Advisory |
http://www.security.nnov.ru/advisories/archdt.asp | Exploit Vendor Advisory |
Configurations
History
No history.
Information
Published : 2001-07-12 04:00
Updated : 2024-02-04 16:31
NVD link : CVE-2001-1271
Mitre link : CVE-2001-1271
CVE.ORG link : CVE-2001-1271
JSON object : View
Products Affected
rarsoft
- rar
CWE