Info-ZIP UnZip编码字符敌对目标路径漏洞

漏洞信息详情

Info-ZIP UnZip编码字符敌对目标路径漏洞

• CNNVD编号：CNNVD-200306-075
• 危害等级： 低危
  
  
• CVE编号：
  CVE-2003-0282
  
• 漏洞类型：
  
  
  路径遍历
  
• 发布时间：
  
  2003-06-16
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2005-10-20
  
• 厂        商：
  
  sco
• 漏洞来源：
  .’);”>Discovery of this …

UnZip 5.50版本存在目录遍历漏洞。攻击者借助在两个.（点）字符之间的无效字符覆盖任意文件，该漏洞可被过滤并发生在“..”序列中。

Debian have reported that fixes released in the original Debian advisory (DSA 344-1) may not have sufficiently addressed this issue. A revised advisory (DSA 344-2) has been released. Please see the referenced advisory for further details regarding obtaining and applying fixes.
Mandrake has released an updated advisory MDKSA-2003:073-1 with updated fixes to address this issue. See the attached advisory for further details. Users are advised to upgrade as soon as possible.
Conectiva has released a security advisory (CLA-2003:724) containing fixes to address this issue. Users are advised to upgrade as soon as possible.
Immunix has released a security advisory (IMNX-2003-7+-017-01) containing fixes to address this issue. Users are advised to upgrade as soon as possible.
RedHat fixes for this issue have been made available. See the attached advisory for further details.
Conectiva has released a security advisory (CLA-2003:672) containing fixes to address this issue. Users are advised to upgrade as soon as possible.
Mandrake has released advisory MDKSA-2003:073 with fixes to address this issue.
OpenPKG has released advisory OpenPKG-SA-2003.033 to address this issue.
Gentoo has released advisory 200307-02 to address this issue. Vulnerable users are advised to execute the following commands to update affected systems:
emerge sync
emerge unzip
emerge clean
Yellow Dog has released an advisory (YDU-20030710-1) to address this issue. Please see the attached advisory for details on obtaining and applying fixes.
Turbolinux has released an advisory (TLSA-2003-42.txt) to address this issue. Please see the attached advisory for details on obtaining and applying fixes.
Sun has released a fix for Sun Linux 5.0.6.
Sun has also released updated packages for Sun Cobalt Qube3, RaQ4, and RaQXTR.
SCO has released an advisory (CSSA-2003-031.0) for OpenLinux that addresses this issue.
SCO OpenLinux Workstation 3.1.1

• SCO unzip-5.40-6MR.i386.rpm
  ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2003-03
  1.0/RPMS/unzip-5.40-6MR.i386.rpm

SCO OpenLinux Server 3.1.1

• SCO unzip-5.40-6MR.i386.rpm
  ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2003-031.0/R
  PMS/unzip-5.40-6MR.i386.rpm

Info-ZIP UnZip 5.50

• Conectiva unzip-5.50-13860U90_1cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/unzip-5.50-13860U90_1cl.i38
  6.rpm
• Conectiva unzip-5.50-194.i586.rpm
  ftp://ul.conectiva.com.br/updates/1.0/RPMS.core/unzip-5.50-194.i586.rp
  m
• Conectiva unzip-5.50-1U70_2cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/7.0/RPMS/unzip-5.50-1U70_2cl.i386.
  rpm
• Conectiva unzip-5.50-1U80_2cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/unzip-5.50-1U80_2cl.i386.rp
  m
• Debian unzip_5.50-1woody1_alpha.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_alpha.deb
• Debian unzip_5.50-1woody1_arm.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_arm.deb
• Debian unzip_5.50-1woody1_hppa.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_hppa.deb
• Debian unzip_5.50-1woody1_i386.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_i386.deb
• Debian unzip_5.50-1woody1_ia64.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_ia64.deb
• Debian unzip_5.50-1woody1_m68k.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_m68k.deb
• Debian unzip_5.50-1woody1_mips.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_mips.deb
• Debian unzip_5.50-1woody1_mipsel.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_mipsel.deb
• Debian unzip_5.50-1woody1_powerpc.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_powerpc.deb
• Debian unzip_5.50-1woody1_s390.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_s390.deb
• Debian unzip_5.50-1woody1_sparc.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  1_sparc.deb
• Debian unzip_5.50-1woody2_alpha.deb
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  2_alpha.deb
• Debian unzip_5.50-1woody2_arm.deb
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  2_arm.deb
• Debian unzip_5.50-1woody2_hppa.deb
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  2_hppa.deb
• Debian unzip_5.50-1woody2_i386.deb
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  2_i386.deb
• Debian unzip_5.50-1woody2_ia64.deb
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  2_ia64.deb
• Debian unzip_5.50-1woody2_m68k.deb
  
  http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody
  2_m68k.deb
• Debian unzip_5.50-1woody2_mips.deb

来源: BID
名称: 7550
链接:http://www.securityfocus.com/bid/7550

来源: REDHAT
名称: RHSA-2003:199
链接:http://www.redhat.com/support/errata/RHSA-2003-199.html

来源: TURBO
名称: TLSA-2003-42
链接:http://www.turbolinux.com/security/TLSA-2003-42.txt

来源: REDHAT
名称: RHSA-2003:200
链接:http://www.redhat.com/support/errata/RHSA-2003-200.html

来源: DEBIAN
名称: DSA-344
链接:http://www.debian.org/security/2003/dsa-344

来源: BUGTRAQ
名称: 20030509 unzip directory traversal revisited
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=105259038503175&w=2

来源: IMMUNIX
名称: IMNX-2003-7+-017-01
链接:http://download.immunix.org/ImmunixOS/7+/Updates/errata/IMNX-2003-7+-017-01

来源: SCO
名称: CSSA-2003-031.0
链接:ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-031.0.txt

来源: XF
名称: unzip-dotdot-directory-traversal(12004)
链接:http://xforce.iss.net/xforce/xfdb/12004

来源: MANDRAKE
名称: MDKSA-2003:073
链接:http://www.mandriva.com/security/advisories?name=MDKSA-2003:073

来源: CIAC
名称: N-111
链接:http://www.ciac.org/ciac/bulletins/n-111.shtml

来源: BUGTRAQ
名称: 20030710 [OpenPKG-SA-2003.033] OpenPKG Security Advisory (infozip)
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=105786446329347&w=2

来源: CONECTIVA
名称: CLA-2003:672
链接:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000672

来源: US Government Resource: oval:org.mitre.oval:def:619
名称: oval:org.mitre.oval:def:619
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:619