Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-05-05T04:00:00

Updated: 2024-08-08T00:10:03.724Z

Reserved: 2004-03-17T00:00:00

Link: CVE-2004-0235

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2004-08-18T04:00:00.000

Modified: 2024-11-20T23:48:04.040

Link: CVE-2004-0235

cve-icon Redhat

Severity : Moderate

Publid Date: 2004-05-01T00:00:00Z

Links: CVE-2004-0235 - Bugzilla