Picozip: >> Picozip >> 4.02 Security Vulnerabilities
PicoZip allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
CVSS Score
7.8
EPSS Score
0.043
Published
2007-05-09
Directory traversal vulnerability in Acubix PicoZip 4.02 allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in the file path in an (1) GZ, (2) TAR, (3) RAR, (4) JAR, or (5) ZIP archive.
CVSS Score
6.8
EPSS Score
0.004
Published
2007-04-18