Directory traversal vulnerability in extract_chmLib example program in CHM Lib (chmlib) prior to 0.38 allows remote malicious users to overwrite arbitrary files via a CHM archive containing files with a .. (dot dot) in their filename.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jed wing chm lib |