FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

unarj -- directory traversal vulnerability

Affected packages
unarj < 2.43_2


VuXML ID 1f922de0-3fe5-11d9-a9e7-0001020eed82
Discovery 2004-10-10
Entry 2004-11-26

unarj has insufficient checks for filenames that contain ... This can allow an attacker to overwrite arbitrary files with the permissions of the user running unarj.


Bugtraq ID 11436
CVE Name CVE-2004-1027