RSS   Vulnerabilities for 'Perl-archive-zip'   RSS

2018-06-29
 
CVE-2018-10860

CWE-22
 

 
perl-archive-zip is vulnerable to a directory traversal in Archive::Zip. It was found that the Archive::Zip module did not properly sanitize paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could use this flaw to write or overwrite arbitrary files in the context of the perl interpreter.

 


Copyright 2024, cxsecurity.com

 

Back to Top