[原文]Directory traversal vulnerability in the archive decompression library in AhnLab V3Pro 2004 build 126.96.36.1993, V3 VirusBlock 2005 build 188.8.131.523, and V3Net for Windows Server 6.0 build 184.108.40.2063 allows remote attackers to write arbitrary files via a .. (dot dot) in the filename in a compressed archive.
Ahnlab V3 contains a flaw that allows a remote attacker to write files to arbitrary directories. The issue is due to an error in the archive decompression library and occurs when a malicious archive is scanned containing compressed files with directory traversal sequences in their filenames.
Upgrade to version 220.127.116.117 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.