[原文]Directory traversal vulnerability in the archive decompression library in AhnLab V3Pro 2004 build 22.214.171.1243, V3 VirusBlock 2005 build 126.96.36.1993, and V3Net for Windows Server 6.0 build 188.8.131.523 allows remote attackers to write arbitrary files via a .. (dot dot) in the filename in a compressed archive.
Ahnlab V3 contains a flaw that allows a remote attacker to write files to arbitrary directories. The issue is due to an error in the archive decompression library and occurs when a malicious archive is scanned containing compressed files with directory traversal sequences in their filenames.
Upgrade to version 184.108.40.2067 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.