Directory Traversal Vulnerability in gzip by GNU
CVE-2005-1228

Currently unrated

Key Information:

Vendor
Gnu
Status
Vendor
CVE Published:
2 May 2005

Summary

The directory traversal vulnerability in gzip versions 1.2.4 to 1.3.5 allows remote attackers to craft compressed files that leverage the '..' sequence in the filename. This exploit leads to unauthorized access, enabling attackers to write files to arbitrary directories on the host system. Users are encouraged to upgrade to a patched version of gzip to mitigate the risk associated with this vulnerability.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.