CVE-2005-3030

Sažetak

Directory traversal vulnerability in the archive decompression library in AhnLab V3Pro 2004 build 6.0.0.383, V3 VirusBlock 2005 build 6.0.0.383, and V3Net for Windows Server 6.0 build 6.0.0.383 allows remote attackers to write arbitrary files via a .. (dot dot) in the filename in a compressed archive.

Reference

http://info.ahnlab.com/english/advisory/01.html
http://marc.info/?l=bugtraq&m=112680062609377&w=2
http://secunia.com/advisories/15674/
http://secunia.com/secunia_research/2005-17/advisory/
http://www.securityfocus.com/bid/14848

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

18-10-2016 - 03:32

Objavljeno

21-09-2005 - 22:03