[原文]Directory traversal vulnerability in the archive decompression library in AhnLab V3Pro 2004 build 220.127.116.113, V3 VirusBlock 2005 build 18.104.22.1683, and V3Net for Windows Server 6.0 build 22.214.171.1243 allows remote attackers to write arbitrary files via a .. (dot dot) in the filename in a compressed archive.
Ahnlab V3 contains a flaw that allows a remote attacker to write files to arbitrary directories. The issue is due to an error in the archive decompression library and occurs when a malicious archive is scanned containing compressed files with directory traversal sequences in their filenames.
Upgrade to version 126.96.36.1997 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.