[原文]Directory traversal vulnerability in the archive decompression library in AhnLab V3Pro 2004 build 184.108.40.2063, V3 VirusBlock 2005 build 220.127.116.113, and V3Net for Windows Server 6.0 build 18.104.22.1683 allows remote attackers to write arbitrary files via a .. (dot dot) in the filename in a compressed archive.
Ahnlab V3 contains a flaw that allows a remote attacker to write files to arbitrary directories. The issue is due to an error in the archive decompression library and occurs when a malicious archive is scanned containing compressed files with directory traversal sequences in their filenames.
Upgrade to version 22.214.171.1247 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.