Info-zip : Security Vulnerabilities, CVEs, (Directory traversal)
Directory traversal vulnerability in UnZip 5.50 allows attackers to overwrite arbitrary files via invalid characters between two . (dot) characters, which are filtered and result in a ".." sequence.
Max CVSS
2.6
EPSS Score
0.18%
Published
2003-06-16
Updated
2017-10-11
Directory traversal vulnerability in Info-ZIP UnZip 5.42 and earlier allows attackers to overwrite arbitrary files during archive extraction via a .. (dot dot) in an extracted filename.
Max CVSS
2.1
EPSS Score
0.07%
Published
2001-07-12
Updated
2010-05-25
2 vulnerabilities found