VYPR
Unrated severityNVD Advisory· Published Mar 1, 2005· Updated Jun 16, 2026

CVE-2004-1027

CVE-2004-1027

Description

Directory traversal vulnerability in the -x (extract) command line option in unarj allows remote attackers to overwrite arbitrary files via an arj archive with filenames that contain .. (dot dot) sequences.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • Arjsoftware/Unarj4 versions
    cpe:2.3:a:arjsoftware:unarj:2.62:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:arjsoftware:unarj:2.62:*:*:*:*:*:*:*
    • cpe:2.3:a:arjsoftware:unarj:2.63:a:*:*:*:*:*:*
    • cpe:2.3:a:arjsoftware:unarj:2.64:*:*:*:*:*:*:*
    • cpe:2.3:a:arjsoftware:unarj:2.65:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*
  • cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.