NuytsTech Security

CVE-2015-0552

by ·

Directory traversal vulnerability in the gcab_folder_extract function in libgcab/gcab-folder.c in gcab 0.4 allows remote attackers to write to arbitrary files via crafted path in a CAB file, as demonstrated by "tmpmoo."

Date published : 2015-01-15

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774580

https://bugzilla.gnome.org/show_bug.cgi?id=742331

Tags: