CVE-2005-0304 β€” Path Traversal in Player

2 documents2 sources
Severity
5.0MEDIUMNVD
EPSS
1.0%
top 23.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Divx Player
Timeline
PublishedMay 2
Latest updateMay 1

Description

Directory traversal vulnerability in DivX Player 2.6 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a filename in a ZIP file for a skin.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

β–ΆNVDdivx/divx_player2.6

πŸ”΄Vulnerability Details

1
GHSA
GHSA-289w-ff4x-wjx9: Directory traversal vulnerability in DivX Player 2β†—2022-05-01
β–Ά
CVE-2005-0304 β€” Path Traversal in Divx Player | cvebase