DescriptionMultiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SuSE-SA:2004:010, published Tuesday, May 5th 2004 02:30 MEST
- SuSE-SA:2004:011, published Thursday, May 6th 2004 22:30 MEST
SUSE Timeline for this CVECVE page created: Fri Jun 28 00:46:44 2013
CVE page last modified: Fri Oct 7 12:45:28 2022