Vulnerability Description
Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Clearswift | Mailsweeper | 4.0 |
| F-Secure | F-Secure Anti-Virus | 4.51 |
| F-Secure | F-Secure For Firewalls | 6.20 |
| F-Secure | F-Secure Internet Security | 2003 |
| F-Secure | F-Secure Personal Express | 4.5 |
| F-Secure | Internet Gatekeeper | 6.31 |
| Rarlab | Winrar | 3.20 |
| Redhat | Lha | 1.14i-9 |
| Sgi | Propack | 2.4 |
| Stalker | Cgpmcafee | 3.2 |
| Tsugio Okamoto | Lha | 1.14 |
| Winzip | Winzip | 9.0 |
| Redhat | Fedora Core | core_1.0 |
References
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000840
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020776.html
- http://marc.info/?l=bugtraq&m=108422737918885&w=2
- http://security.gentoo.org/glsa/glsa-200405-02.xml
- http://www.debian.org/security/2004/dsa-515
- http://www.redhat.com/archives/fedora-announce-list/2004-May/msg00005.html
- http://www.redhat.com/support/errata/RHSA-2004-178.html
- http://www.redhat.com/support/errata/RHSA-2004-179.html
- http://www.securityfocus.com/bid/10243ExploitPatchVendor Advisory
- https://bugzilla.fedora.us/show_bug.cgi?id=1833
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16013
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000840
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020776.html
FAQ
What is CVE-2004-0235?
CVE-2004-0235 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute p...
How severe is CVE-2004-0235?
CVE-2004-0235 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0235?
Check the references section above for vendor advisories and patch information. Affected products include: Clearswift Mailsweeper, F-Secure F-Secure Anti-Virus, F-Secure F-Secure For Firewalls, F-Secure F-Secure Internet Security, F-Secure F-Secure Personal Express.