Directory traversal vulnerability in cabextract before 1.1 allows remote attackers to overwrite arbitrary files via a cabinet file containing .. (dot dot) sequences in a filename.
Software | From | Fixed in |
---|---|---|
cabextract_project / cabextract | 0.2 | 0.2.x |
cabextract_project / cabextract | 0.6 | 0.6.x |
cabextract_project / cabextract | 1.0 | 1.0.x |