CVE-2006-1323

Name of the Vulnerable Software and Affected Versions WinHKI versions 1.6 and earlier

Description A directory traversal issue allows attackers to overwrite arbitrary files by using certain archive types, including RAR, TAR, ZIP, or TAR.GZ, with file names containing ".." sequences.

Recommendations For WinHKI versions 1.6 and earlier, as a temporary workaround, consider restricting the use of RAR, TAR, ZIP, and TAR.GZ archives until a patch is available. Avoid using archives with file names containing ".." sequences to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.