Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0329

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2005-0329
Last Modified 05 Sep 2008 04:45:58
Published 02 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-0329

Summary

Directory traversal vulnerability in ZipGenius 5.5 and earlier allows remote attackers to create and possibly modify arbitrary files via a ZIP file with a file whose name includes .. (dot dot) sequences.

Vulnerable Systems

Application

  • Zipgenius Standard 5.5

  • Zipgenius Suite 5.5


References

BID - 12419

SECTRACK - 1013542

BUGTRAQ - 20050202 7a69Adv#19 - ZipGenius unpack path disclosure

XF - zipgenius-path-disclosure(19203)

SECUNIA - 14123


Last Updated: 27 May 2016 10:39:46