CVE-2003-0282
published 2003-06-16CVE-2003-0282: Directory traversal vulnerability in UnZip 5.50 allows attackers to overwrite arbitrary files via invalid characters between two . (dot) characters, which are…
low2.6CVSS 3.1
AVNACHAuNCNIPAN
EXPLOIT
Directory traversal vulnerability in UnZip 5.50 allows attackers to overwrite arbitrary files via invalid characters between two . (dot) characters, which are filtered and result in a ".." sequence.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | unzip | < unzip 5.50-3 (bookworm) | unzip 5.50-3 (bookworm) |
| info-zip | unzip | — | — |
| sco | openlinux_server | — | — |
| sco | openlinux_workstation | — | — |
| unzip_project | unzip | >= 0 < 5.50-3 | 5.50-3 |
| unzip_project | unzip | >= 0 < 5.50-3 | 5.50-3 |
| unzip_project | unzip | >= 0 < 5.50-3 | 5.50-3 |
| unzip_project | unzip | >= 0 < 5.50-3 | 5.50-3 |
CVSS provenance
nvd2.6LOWAV:N/AC:H/Au:N/C:N/I:P/A:N
osv2.6LOW