5
CVE-2004-1027
- EPSS 6.28%
- Veröffentlicht 01.03.2005 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginDirectory traversal vulnerability in the -x (extract) command line option in unarj allows remote attackers to overwrite arbitrary files via an arj archive with filenames that contain .. (dot dot) sequences.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Arjsoftware ≫ Unarj Version2.62
Arjsoftware ≫ Unarj Version2.63 Updatea
Arjsoftware ≫ Unarj Version2.64
Arjsoftware ≫ Unarj Version2.65
Debian ≫ Debian Linux Version3.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6.28% | 0.9 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|