RSS   Podatności dla 'ARK'   RSS

2020-09-02
 
CVE-2020-24654

CWE-22
 

 
In KDE Ark before 20.08.1, a crafted TAR archive with symlinks can install files outside the extraction directory, as demonstrated by a write operation to a user's home directory.

 
2020-08-03
 
CVE-2020-16116

CWE-22
 

 
In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal.

 
2017-03-27
 
CVE-2017-5330

 

 
ark before 16.12.1 might allow remote attackers to execute arbitrary code via an executable in an archive, related to associated applications.

 
2014-02-04
 
CVE-2011-2725

CWE-22
 

 
Directory traversal vulnerability in Ark 4.7.x and earlier allows remote attackers to delete and force the display of arbitrary files via .. (dot dot) sequences in a zip file.

 

 >>> Vendor: KDE 48 Produkty
K-mail
KDE
Kde beta 3
KVT
KTV
Kdeutils
Konqueror
Klisa
Kopete
Konqueror embedded
Koffice
KPDF
Kdelibs
Dcopserver
Desktop communication protocol daemon
Quanta
Kdegraphics
Kword
ARTS
Kdebase
Libkhtml
Ksirc
Kmplayer
Kde sc
KGET
Kcheckpass
Kde pim
Kde-workspace
ARK
Kauth
Kde-runtime
Kio-extras
Plasma-desktop
Kde applications
Plasma-workspace
Kde frameworks
Karchives
Kscreenlocker
Kmail
Kde-cli-tools
KIO
Messagelib
Trojita
Okular
Ktexteditor
Amarok
Partition manager
Kimageformats


Copyright 2021, cxsecurity.com

 

Back to Top