Description
Directory traversal vulnerability in the -x (extract) command line option in unarj allows remote attackers to overwrite arbitrary files via an arj archive with filenames that contain .. (dot dot) sequences.
Affected products
- arjsoftware / unarj2.62 – 2.62
- arjsoftware / unarj2.63 – 2.63
- arjsoftware / unarj2.64 – 2.64
- arjsoftware / unarj2.65 – 2.65
- Debian / debian_linux3.0 – 3.0
- gentoo / linux
References
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/17684
- VENDOR_ADVISORYhttp://www.debian.org/security/2005/dsa-652
- MISChttp://www.redhat.com/support/errata/RHSA-2005-007.html
- VENDOR_ADVISORYhttp://www.debian.org/security/2005/dsa-628
- MISChttp://www.securityfocus.com/bid/11436
- MISChttp://lwn.net/Articles/121827/
- MISChttp://security.gentoo.org/glsa/glsa-200411-29.xml
- MAILING_LISThttp://lists.grok.org.uk/pipermail/full-disclosure/2004-October/027348.html