Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
dpkg 1.15.9 on Debian squeeze introduces support for the "C-style encoded filenames" feature without recognizing that the squeeze patch program lacks this feature, which triggers an interaction error that allows remote attackers to conduct directory traversal attacks and modify files outside of the intended directories via a crafted source package. NOTE: this can be considered a release engineering problem in the effort to fix CVE-2014-0471.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
dpkg for Debian 目录遍历漏洞
Vulnerability Description
dpkg是美国软件开发者伊恩-默多克(Ian Murdock)所研发的一款Debian软件包管理器。 dpkg for Debian中存在目录遍历漏洞。攻击者可通过特制的数据包利用该漏洞在既定的目录外创建文件。以下版本受到影响:dpkg 1.17.9之前的1.17.x版本,1.16.14之前的1.16.x版本,1.15.10之前的1.15.x版本。
CVSS Information
N/A
Vulnerability Type
N/A