Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2006-0926

Multiple directory traversal vulnerabilities in Allume StuffIt Standard and Deluxe 9.0, ZipMagic Deluxe 9.0, and StuffIt Expander 9.0.0.21 Engine 9.0.0.21 allow remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a (1) zip or (2) tar archive.

  • Published: Feb 28, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-0926
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 2.6
  • AV:N/AC:H/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
smithmicro / stuffit_deluxe 9.0 9.0.x
smithmicro / stuffit_standard 9.0 9.0.x
smithmicro / stuffit_expander 9.0.0.21_engine_9.0.0.21 9.0.0.21_engine_9.0.0.21.x
smithmicro / zipmagic_deluxe 9.0 9.0.x