← CVECheck
HomeVulnerabilities

CVE-2001-1270 — LOW severity vulnerability (Directory traversal vulnerability in the console version of)

Directory traversal vulnerability in the console version of PKZip (pkzipc) 4.00 and earlier allows attackers to overwrite arbitrary files during archive extraction with the -rec (recursive) option via a .. (dot dot) attack on the archived files.

CVE IDCVE-2001-1270
SeverityLOW
CVSS score2.1
CVSS vectorAV:L/AC:L/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2001-07-12
Last modified2026-04-16
DescriptionDirectory traversal vulnerability in the console version of PKZip (pkzipc) 4.00 and earlier allows attackers to overwrite arbitrary files during archive extraction with the -rec (recursive) option via a .. (dot dot) attack on the archived files.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →