5.8
CVSSv2

CVE-2007-4546

Published: 27/08/2007 Updated: 15/10/2018
CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6
VMScore: 516
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

Vulnerability Summary

Unreal Commander 0.92 build 565 and 573 lists the filenames from the Central Directory of a ZIP archive, but extracts to local filenames corresponding to names in Local File Header fields in this archive, which might allow remote malicious users to trick a user into performing a dangerous file overwrite or creation.

Vulnerable Product Search on Vulmon Subscribe to Product

x-diesel unreal commander 0.92 build565

x-diesel unreal commander 0.92 build573