← Voltar para CVEs
CVE-2011-2725
N/ADescricao
Directory traversal vulnerability in Ark 4.7.x and earlier allows remote attackers to delete and force the display of arbitrary files via .. (dot dot) sequences in a zip file.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado2/4/2014
Ultima modificacao4/29/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
canonical:ubuntu_linuxkde:arkkde:kde_scopensuse:opensuse
Fraquezas (CWE)
CWE-22
Referencias
http://lists.opensuse.org/opensuse-updates/2012-03/msg00002.html(secalert@redhat.com)
http://packetstormsecurity.com/files/105610/Ark-2.16-Directory-Traversal.html(secalert@redhat.com)
http://seclists.org/fulldisclosure/2011/Oct/351(secalert@redhat.com)
http://www.ubuntu.com/usn/USN-1276-1(secalert@redhat.com)
https://bugzilla.novell.com/show_bug.cgi?id=708268(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=725764(secalert@redhat.com)
http://lists.opensuse.org/opensuse-updates/2012-03/msg00002.html(af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/105610/Ark-2.16-Directory-Traversal.html(af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2011/Oct/351(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-1276-1(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.novell.com/show_bug.cgi?id=708268(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=725764(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.