ghsa-v492-qprp-rvhr
Vulnerability from github
Published
2022-04-29 02:57
Modified
2022-04-29 02:57
Details
Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
{ "affected": [], "aliases": [ "CVE-2004-0235" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2004-08-18T04:00:00Z", "severity": "MODERATE" }, "details": "Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes (\"//absolute/path\").", "id": "GHSA-v492-qprp-rvhr", "modified": "2022-04-29T02:57:23Z", "published": "2022-04-29T02:57:23Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0235" }, { "type": "WEB", "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1833" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16013" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10409" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A978" }, { "type": "WEB", "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000840" }, { "type": "WEB", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020776.html" }, { "type": "WEB", "url": "http://marc.info/?l=bugtraq\u0026m=108422737918885\u0026w=2" }, { "type": "WEB", "url": "http://security.gentoo.org/glsa/glsa-200405-02.xml" }, { "type": "WEB", "url": "http://www.debian.org/security/2004/dsa-515" }, { "type": "WEB", "url": "http://www.redhat.com/archives/fedora-announce-list/2004-May/msg00005.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2004-178.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2004-179.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/10243" } ], "schema_version": "1.4.0", "severity": [] }
Loading...