| Weekly edition | Kernel | Security | Distributions | Search |
| Archives | Calendar | Subscribe | Write for LWN | LWN.net FAQ |
cabextract: missing directory sanitizing
| Package(s): | cabextract | CVE #(s): | CAN-2004-0916 | |||
| Created: | October 28, 2004 | Updated: | November 2, 2004 | |||
| Description: | The cabinet file extraction tool cabextract may allow arbitrary files in upper directories to be overwritten. | |||||
| Alerts: |
| |||||
(Log in to post comments)