mailing list archives
Re: CVE Request: Ark path traversal
From: Jeff Mitchell <mitchell () kde org>
Date: Tue, 26 Jul 2011 17:21:00 -0400
On 7/26/2011 3:58 PM, Josh Bressers wrote:
----- Original Message -----
Ark contains a path traversal vulnerability allowing a
maliciously-crafted zip file to allow for an arbitrary file to be
displayed and, if the user has appropriate credentials, removed.
Can we please get a CVE for this?
Do you have a URL or some other public information about this flaw?
It's not public yet as we're currently working on a fix.