Security Advisory

CVE-2015-0552

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-01-15 15:00:00

Last updated 2024-08-06 04:10:11

Assigner debian

State PUBLISHED

Description

Directory traversal vulnerability in the gcab_folder_extract function in libgcab/gcab-folder.c in gcab 0.4 allows remote attackers to write to arbitrary files via crafted path in a CAB file, as demonstrated by "tmpmoo."

← Browse all CVEs View on cve.org ↗