Vulnerability Details CVE-2015-1589
Directory traversal vulnerability in arCHMage 0.2.4 allows remote attackers to write to arbitrary files via a .. (dot dot) in a CHM file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 56.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.openwall.com/lists/oss-security/2015/02/12/16
- http://www.openwall.com/lists/oss-security/2015/02/12/9
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776164
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100879
- http://www.openwall.com/lists/oss-security/2015/02/12/16
- http://www.openwall.com/lists/oss-security/2015/02/12/9
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776164
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100879
Products affected by CVE-2015-1589
-
cpe:2.3:a:archmage_project:archmage:0.2.4