CVE-2004-0235 — MEDIUM severity vulnerability (Multiple directory traversal vulnerabilities in LHA 1.14 all)
Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
| CVE ID | CVE-2004-0235 |
|---|---|
| Severity | MEDIUM |
| CVSS score | 6.4 |
| CVSS vector | AV:N/AC:L/Au:N/C:P/I:P/A:N |
| CWE | NVD-CWE-Other |
| Status | Modified |
| Published | 2004-08-18 |
| Last modified | 2026-04-16 |
| Description | Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path"). |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →