CVE-2011-2725

Directory traversal vulnerability in Ark 4.7.x and earlier allows remote attackers to delete and force the display of arbitrary files via .. (dot dot) sequences in a zip file.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:kde:kde_sc:4.7.1:*:*:*:*:*:*:*
cpe:2.3:a:kde:kde_sc:4.7.2:*:*:*:*:*:*:*
cpe:2.3:a:kde:kde_sc:4.7.3:*:*:*:*:*:*:*
cpe:2.3:a:kde:kde_sc:*:*:*:*:*:*:*:*
cpe:2.3:a:kde:ark:*:*:*:*:*:*:*:*
cpe:2.3:a:kde:kde_sc:4.7.0:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*

Information

Published : 2014-02-04 15:55

Updated : 2018-10-30 09:27


NVD link : CVE-2011-2725

Mitre link : CVE-2011-2725


JSON object : View

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Advertisement

dedicated server usa

Products Affected

canonical

  • ubuntu_linux

kde

  • kde_sc
  • ark

opensuse

  • opensuse