Vulnerabilities (CVE)

Filtered by vendor Arj Software Inc. Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2004-1027 2 Arj Software Inc., Gentoo 2 Unarj, Linux 2024-11-20 5.0 MEDIUM N/A
Directory traversal vulnerability in the -x (extract) command line option in unarj allows remote attackers to overwrite arbitrary files via an arj archive with filenames that contain .. (dot dot) sequences.
CVE-2004-0947 3 Arj Software Inc., Gentoo, Suse 3 Unarj, Linux, Suse Linux 2024-11-20 10.0 HIGH N/A
Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long filenames.