exploit the possibilities

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

CVE-2020-16116

Status Candidate

Overview

In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal.

Related Files

Ubuntu Security Notice USN-4461-1: Posted Aug 18, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4461-1 - Dominik Penner discovered that Ark did not properly sanitize zip archive files before performing extraction. An attacker could use this to construct a malicious zip archive that, when opened, would create files outside the extraction directory.; tags | advisory; systems | linux, ubuntu; advisories | CVE-2020-16116; SHA-256 | 8b77ab0583418946ca538da2bc0b79f0c808cfa6b4dd79f73e3808043c87a43f; Download | Favorite | View

Gentoo Linux Security Advisory 202008-03: Posted Aug 9, 2020; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202008-3 - Ark was found to allow arbitrary file overwrite, possibly allowing arbitrary code execution. Versions less than 20.04.3-r1 are affected.; tags | advisory, arbitrary, code execution; systems | linux, gentoo; advisories | CVE-2020-16116; SHA-256 | 814545d200aaeee28792e83ca555907b882caf607159bca9224821e462cb7c9c; Download | Favorite | View

Debian Security Advisory 4738-1: Posted Jul 28, 2020; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4738-1 - Dominik Penner discovered that the Ark archive manager did not sanitise extraction paths, which could result in maliciously crafted archives writing outside the extraction directory.; tags | advisory; systems | linux, debian; advisories | CVE-2020-16116; SHA-256 | 48506d9cca6c53f8f0fe2753f97eaba58ced0f271d9c246db0e082ca5ab04f92; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 272 files
Ubuntu 60 files
Debian 19 files
Gentoo 8 files
Apple 5 files
Google Security Research 4 files
Jann Horn 3 files
Spencer McIntyre 3 files
LiquidWorm 3 files
Pierre Kim 2 files

File Tags

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,172)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,112)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,459)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,018)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

packet storm

© 2024 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec