CVE-2015-1192
kgb 1.0b4 - Path Traversal and Arbitrary File Write via Crafted Archive
Title source: llmDescription
Absolute path traversal vulnerability in kgb 1.0b4 allows remote attackers to write to arbitrary files via a full pathname in a crafted archive.
References (4)
Core 4
Core References
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2015/01/18/3
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/72111
Exploit x_refsource_misc
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774989
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/62203
Scores
EPSS
0.0150
EPSS Percentile
71.2%
Details
CWE
CWE-22
Status
published
Products (1)
kgb_project/kgb
1.0b4
Published
Jan 21, 2015
Tracked Since
Feb 18, 2026