ZipZap icon indicating copy to clipboard operation
ZipZap copied to clipboard

Published 20 hours ago verified publisher icon pixelglow

Zipperdown security issue (Path traversal symbols not being ignored)

Open EthanArbuckle opened this issue 6 years ago • 2 comments

Hello,

A security issue has been discovered in another popular Archiving SDK, ZipArchive, which can lead to arbitrary file overwrite. The archive can potentially contain path traversal file names, which can lead to files being written outside of their intended destination. This could potentially lead to RCE under the worst of circumstances (such as overwriting a javascript file that the app is going to execute).

See: https://zipperdown.org/ https://github.com/ZipArchive/ZipArchive/issues/453

ZipArchive is floating the idea of a "secure" unarchiving method that strips out filenames containing path traversal symbols.

Your thoughts?

EthanArbuckle avatar May 18 '18 19:05 EthanArbuckle

Yeah is it vulnerable?

ethanlim avatar May 24 '18 06:05 ethanlim

@pixelglow Any Update or feedback?

EthanArbuckle avatar Jun 13 '18 22:06 EthanArbuckle