CVE-2005-0602 — Unzip vulnerability

7 documents7 sources

Severity

6.2MEDIUMNVD

EPSS

0.1%

top 65.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedMay 2

Latest updateMay 1

Description

Unzip 5.51 and earlier does not properly warn the user when extracting setuid or setgid files, which may allow local users to gain privileges.

AV:L/AC:H/C:C/I:C/A:CExploitability: 1.9 | Impact: 10.0

GHSA

GHSA-h78h-jj63-v974: Unzip 5↗2022-05-01

▶

OSV

CVE-2005-0602: Unzip 5↗2005-05-02

▶

CVEList

CVE-2005-0602: Unzip 5↗2005-03-01

▶

Ubuntu

unzip vulnerability↗2005-08-01

▶

Debian

CVE-2005-0602: unzip - Unzip 5.51 and earlier does not properly warn the user when extracting setuid or...↗2005

▶

Red Hat

CVE-2005-0602: Unzip 5↗

▶