Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0304

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-0304
Last Modified 05 Sep 2008 04:45:54
Published 02 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0304

Summary

Directory traversal vulnerability in DivX Player 2.6 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a filename in a ZIP file for a skin.

Vulnerable Systems

Application

  • Divx Player 2.6


References

XF - divx-player-directory-traversal(19030)

BID - 12332

BUGTRAQ - 20050121 Arbitrary files overwriting through skins in DivX Player 2.6

SECUNIA - 13969

MISC - http://aluigi.altervista.org/adv/divxplayer-adv.txt


Last Updated: 27 May 2016 10:39:45