CVE-2004-0235

Name of the Vulnerable Software and Affected Versions LHA versions 1.14 LHA version 1.14i-9.1

Description The issue is related to multiple directory traversal vulnerabilities in LHA, which can be exploited remotely. This can lead to a loss of confidentiality, integrity, and availability of protected information. The vulnerabilities allow attackers to create arbitrary files via an LHA archive containing filenames with sequences like .. or absolute pathnames with double leading slashes, e.g., //absolute/path. The problem arises from the program not properly sanitizing user input, specifically traversal style attacks like ../../, enabling a remote attacker to view arbitrary files on the system.

Recommendations For LHA version 1.14, consider disabling the use of LHA archives until a patch is available. For LHA version 1.14i-9.1, restrict access to the LHA package to minimize the risk of exploitation. As a temporary workaround, avoid using LHA archives that contain filenames with .. sequences or absolute pathnames with double leading slashes until the issue is resolved.