Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2004-08-18 04:00
Updated : 2024-02-04 16:31
NVD link : CVE-2004-0235
Mitre link : CVE-2004-0235
CVE.ORG link : CVE-2004-0235
JSON object : View
Products Affected
f-secure
- f-secure_for_firewalls
- f-secure_personal_express
- f-secure_internet_security
- f-secure_anti-virus
- internet_gatekeeper
redhat
- fedora_core
- lha
tsugio_okamoto
- lha
rarlab
- winrar
stalker
- cgpmcafee
winzip
- winzip
sgi
- propack
clearswift
- mailsweeper
CWE