FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-12-11 14:10:47 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
5a945904-73b1-11db-91d2-0002a5c2f4ef	unzoo -- Directory Traversal Vulnerability Secunia reports: Doubles has discovered a vulnerability in Unzoo, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an input validation error when unpacking archives. This can be exploited via a directory traversal attack to overwrite files outside the directory, where the files are extracted to, if a user is tricked into extracting a malicious archive using Unzoo. Discovery 2004-10-18 Entry 2006-11-14 Modified 2006-12-15 unzoo < 4.4_1 11417 http://secunia.com/advisories/12857/ http://securitytracker.com/alerts/2004/Oct/1011673.html

VuXML ID

Description

5a945904-73b1-11db-91d2-0002a5c2f4ef

unzoo -- Directory Traversal Vulnerability

Secunia reports:

Doubles has discovered a vulnerability in Unzoo, which potentially can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an input validation error when unpacking archives. This can be exploited via a directory traversal attack to overwrite files outside the directory, where the files are extracted to, if a user is tricked into extracting a malicious archive using Unzoo.

Discovery 2004-10-18
Entry 2006-11-14
Modified 2006-12-15
unzoo

< 4.4_1

11417
http://secunia.com/advisories/12857/
http://securitytracker.com/alerts/2004/Oct/1011673.html