NotCVE - vendor:"Arj Software Inc." product:"Unarj" version:"2.62"

2 results (0.002 seconds)

CVSS: 10.0EPSS: 12%CPEs: 8EXPL: 0

CVE-2004-0947

https://notcve.org/view.php?id=CVE-2004-0947

24 Nov 2004 — Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long filenames. • http://lwn.net/Articles/121827 •

CVSS: 7.5EPSS: 6%CPEs: 6EXPL: 0

CVE-2004-1027

https://notcve.org/view.php?id=CVE-2004-1027

16 Nov 2004 — Directory traversal vulnerability in the -x (extract) command line option in unarj allows remote attackers to overwrite arbitrary files via an arj archive with filenames that contain .. (dot dot) sequences. • http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/027348.html •