Vulnerability Details CVE-2006-0890
Directory traversal vulnerability in SpeedProject Squeez 5.1, as used in (1) ZipStar 5.1 and (2) SpeedCommander 11.01.4450, allows remote attackers to overwrite arbitrary files via unspecified manipulations in a (1) JAR or (2) ZIP archive.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.8%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/19006
- http://www.osvdb.org/23465
- http://www.securityfocus.com/archive/1/425973/100/0/threaded
- http://www.securityfocus.com/bid/16807
- http://www.vupen.com/english/advisories/2006/0731
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24909
- http://secunia.com/advisories/19006
- http://www.osvdb.org/23465
- http://www.securityfocus.com/archive/1/425973/100/0/threaded
- http://www.securityfocus.com/bid/16807
- http://www.vupen.com/english/advisories/2006/0731
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24909
Products affected by CVE-2006-0890
-
cpe:2.3:a:speedproject:speedcommander:11.01_build4450
-
cpe:2.3:a:speedproject:squeez:5.1
-
cpe:2.3:a:speedproject:zipstar:5.1