chmlib: missing input sanitizing
| Package(s): | chmlib | CVE #(s): | CVE-2006-3178 | ||||
| Created: | August 7, 2006 | Updated: | August 9, 2006 | ||||
| Description: | It was discovered that one of the utilities shipped with chmlib, a library for dealing with Microsoft CHM files, performs insufficient sanitizing of filenames, which might lead to directory traversal. | ||||||
| Alerts: |
| ||||||