|
|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200506-03] Dzip: Directory traversal vulnerability Vulnerability Scan
Vulnerability Scan Summary
Dzip: Directory traversal vulnerability
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200506-03
(Dzip: Directory traversal vulnerability)
Dzip is vulnerable to a directory traversal attack when extracting
archives.
Impact
A possible hacker could exploit this vulnerability by creating a
specially crafted archive to extract files to arbitrary locations.
Workaround
There is no known workaround at this time.
Solution:
All Dzip users should upgrade to the latest available version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=games-utils/dzip-2.9-r1"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|
