9 lines
401 B
Plaintext
9 lines
401 B
Plaintext
|
== Ask Yourself Whether
|
||
|
|
|
||
|
|
* there is no validation of the name of the archive entry
|
||
|
|
* there is no validation of the effective path where the archive entry is going to be expanded
|
||
|
|
* there is no validation of the size of the expanded archive entry
|
||
|
|
* there is no validation of the ratio between the compressed and uncompressed archive entry
|
||
|
|
|
||
|
|
There is a risk if you answered yes to any of those questions.
|