CVE-2014-9485

Publication date

2018-01-16 00:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in the do_extract_currentfile function in miniunz.c in miniunzip in minizip before 1.1-5 might allow remote attackers to write to arbitrary files via a crafted entry in a ZIP archive.