CVE

Id
13825  
CVE No.
CVE-2005-2619  
Status
Candidate  
Description
Directory traversal vulnerability in kvarcve.dll in Autonomy (formerly Verity) KeyView SDK before 9.2.0, as used in Lotus Notes 6.5.4 and 7.0, allows remote attackers to delete arbitrary files via a (1) ZIP, (2) UUE or (3) TAR archive that contains a .. (dot dot) in the filename, which is not properly handled when generating a preview.  
Phase
Assigned (20050817)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
101030 13825 CVE-2005-2619 BUGTRAQ:20060210 Secunia Research: Lotus Notes Multiple Archive Handling DirectoryTraversal  View
101031 13825 CVE-2005-2619 URL:http://www.securityfocus.com/archive/1/archive/1/424717/100/0/threaded  View
101032 13825 CVE-2005-2619 MISC:http://secunia.com/secunia_research/2005-66/advisory/  View
101033 13825 CVE-2005-2619 MISC:http://secunia.com/secunia_research/2005-30/advisory/  View
101034 13825 CVE-2005-2619 CONFIRM:http://www-1.ibm.com/support/docview.wss?rs=475&uid=swg21229918  View
101035 13825 CVE-2005-2619 BID:16576  View
101036 13825 CVE-2005-2619 URL:http://www.securityfocus.com/bid/16576  View
101037 13825 CVE-2005-2619 VUPEN:ADV-2006-0500  View
101038 13825 CVE-2005-2619 URL:http://www.vupen.com/english/advisories/2006/0500  View
101039 13825 CVE-2005-2619 OSVDB:23066  View
101040 13825 CVE-2005-2619 URL:http://www.osvdb.org/23066  View
101041 13825 CVE-2005-2619 SECTRACK:1015657  View
101042 13825 CVE-2005-2619 URL:http://securitytracker.com/id?1015657  View
101043 13825 CVE-2005-2619 SECUNIA:16100  View
101044 13825 CVE-2005-2619 URL:http://secunia.com/advisories/16100  View
101045 13825 CVE-2005-2619 SECUNIA:16280  View
101046 13825 CVE-2005-2619 URL:http://secunia.com/advisories/16280  View
101047 13825 CVE-2005-2619 XF:lotus-kvarcve-directory-traversal(24637)  View

Related JVN