Package: gcab Version: 0.4-1 Tags: security gcab is susceptible to directory traversal:
$ pwd /home/jwilk $ gcab -xv traversal.cab \tmp\moo $ ls -l /tmp/moo -rw-r--r-- 1 jwilk users 4 Jan 4 17:58 /tmp/moo The script I used to create the test case is available at: https://bitbucket.org/jwilk/path-traversal-samples -- System Information: Debian Release: 8.0 APT prefers unstable APT policy: (990, 'unstable'), (500, 'experimental') Architecture: i386 (x86_64) Foreign Architectures: amd64 Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=C, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) Versions of packages gcab depends on: ii libc6 2.19-13 ii libgcab-1.0-0 0.4-1 ii libglib2.0-0 2.42.1-1 -- Jakub Wilk
traversal.cab
Description: application/cab
