Directory Traversal Vulnerabilities in Unace 1.2b by RARLab
CVE-2005-0161

Currently unrated

Key Information:

Vendor: E-merge
Status: Unace
Vendor: CVE Published:; 22 February 2005

What is CVE-2005-0161?

Unace 1.2b contains multiple directory traversal vulnerabilities that permit attackers to overwrite arbitrary files through exploitation of ACE archives. This can occur via the inclusion of directory traversal sequences (such as '../') or absolute pathnames within the archived content. Successful exploitation compromises file integrity, allowing the unauthorized modification or replacement of critical files on the system.

References

http://secunia.com/advisories/14359

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/12628

vdb-entryx_refsource_BID

http://lists.grok.org.uk/pipermail/full-disclosure/2005-F...

mailing-listx_refsource_FULLDISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 22, 2005
Vulnerability Reserved
Jan 27, 2005

CVE-2005-0161 Data

JSON

E-merge

What is CVE-2005-0161?

References

Timeline