[Secure-testing-team] Bug#874059: unrar-free: directory traversal vulnerability
Salvatore Bonaccorso
carnil at debian.org
Sat Sep 2 15:18:58 UTC 2017
Source: unrar-free
Version: 1:0.0.1+cvs20140707-1
Severity: grave
Tags: security upstream
Hi
>From http://www.openwall.com/lists/oss-security/2017/08/20/1
Issue 1: Directory Traversal
Creating a rar v2 archive with path names of the form ../[filename]
will unpack them into the upper directory.
Attached Hanno's POC.
Regards,
Salvatore
-------------- next part --------------
A non-text attachment was scrubbed...
Name: unrar-gpl-directory-traversal.rar
Type: application/x-rar
Size: 62 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20170902/d72255ba/attachment.bin>
More information about the Secure-testing-team
mailing list