CVE-2014-9485

Published: Jan 16, 2018

Modified: Aug 6, 2024

PUBLISHED

Description

Directory traversal vulnerability in the do_extract_currentfile function in miniunz.c in miniunzip in minizip before 1.1-5 might allow remote attackers to write to arbitrary files via a crafted entry in a ZIP archive.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

71846

vdb-entry

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774321

[oss-security] 20141231 cve request: miniunzip directory traversal

mailing-list

[oss-security] 20150103 Re: cve request: miniunzip directory traversal

mailing-list

[oss-security] 20240124 Re: CVE-2023-45853: overflows in MiniZip in zlib through 1.3

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-9485

Description

Affected Products

References