Lucene search
+L

750 matches found

Snyk
Snyk
added 2018/06/25 12:31 p.m.4 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview org.jenkins-ci.plugins:fortify-cloudscan-jenkins-plugin allows an organization to host their own internal cloud-based infrastructure of Static Code Analyzer SCA machines that are distributed jobs by a centralized controller and optionally integrated with Software Security Center SSC...

6.5CVSS7.8AI score0.00852EPSS
Exploits0References2
Snyk
Snyk
added 2018/06/10 9:0 p.m.4 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview sharpziplib is a Zip, GZip, Tar and BZip2 library written entirely in C for the .NET platform. Affected versions of the package are vulnerable to Arbitrary File Write via Archive Extraction AKA "Zip Slip". It is exploited using a specially crafted zip archive, that holds path traversal...

5.5CVSS7.8AI score0.08926EPSS
Exploits1References2
Hacker One
Hacker One
added 2018/06/05 4:1 p.m.44 views

Node.js third-party modules: Arbitrary File Write through archive extraction

I would like to report arbitrary file write vulnerability in adm-zip module It allows attackers to write arbitrary files when a malicious archive is extracted. More info here: https://snyk.io/research/zip-slip-vulnerability https://github.com/snyk/zip-slip-vulnerabilityaffected-libraries Module...

4.3CVSS1.2AI score0.11917EPSS
Exploits1
Hacker One
Hacker One
added 2018/06/05 3:58 p.m.91 views

Node.js third-party modules: Arbitrary File Write Through Archive Extraction

I would like to report arbitrary file write vulnerability in adm-zip module It allows attackers to write arbitrary files when a malicious archive is extracted. More info here: https://snyk.io/research/zip-slip-vulnerability https://github.com/snyk/zip-slip-vulnerabilityaffected-libraries Module...

4.3CVSS0.3AI score0.15359EPSS
Exploits1
Snyk
Snyk
added 2018/05/15 8:42 p.m.2 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview org.springframework.integration:spring-integration-zip provides Zip un- compression support. Affected versions of the package are vulnerable to Arbitrary File Write via Archive Extraction AKA "Zip Slip". It is exploited using a specially crafted zip archive, that holds path traversal...

4.7CVSS7.8AI score0.01446EPSS
Exploits0References2
Fedora
Fedora
added 2018/05/05 8:35 p.m.22 views

[SECURITY] Fedora 28 Update: scummvm-tools-2.0.0-1.fc28

This is a collection of various tools that may be useful to use in conjunction with ScummVM. Please note that although a tool may support a feature, certain ScummVM versions may not. ScummVM 0.6.x does not support FLAC audio, for example. Many games package together all their game data in a few b...

8.8CVSS1.9AI score0.01643EPSS
Exploits0
Snyk
Snyk
added 2018/05/04 7:17 p.m.1 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview org.apache.storm:storm-server is a distributed realtime computation system. Affected versions of this package are vulnerable to Arbitrary File Write via Archive Extraction Zip Slip. Details It is exploited using a specially crafted zip archive, that holds path traversal filenames. When...

5.8CVSS7.8AI score0.02361EPSS
Exploits0References2
Snyk
Snyk
added 2018/05/04 7:17 p.m.4 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview org.apache.storm:storm-core is a distributed realtime computation system. Affected versions of this package are vulnerable to Arbitrary File Write via Archive Extraction Zip Slip. Details It is exploited using a specially crafted zip archive, that holds path traversal filenames. When...

5.8CVSS7.8AI score0.02361EPSS
Exploits0References2
Snyk
Snyk
added 2018/04/17 9:0 p.m.2 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview sharpcompress is a compression library for .NET Standard 1.0 that can unrar, decompress 7zip, decompress xz, zip/unzip, tar/untar lzip/unlzip, bzip2/unbzip2 and gzip/ungzip with forward-only reading and file random access APIs. Affected versions of the package are vulnerable to Arbitrary...

5.5CVSS7.8AI score0.10051EPSS
Exploits1References2
Snyk
Snyk
added 2018/04/17 9:0 p.m.2 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview org.codehaus.plexus:plexus-archiver is a Collection of Plexus components to create archives or extract files out of an archive to a directory with a unified Archiver/UnArchiver API whatever the archive format is. Affected versions of the package are vulnerable to Arbitrary File Write via...

7.3CVSS7.8AI score0.13179EPSS
Exploits1References2
Snyk
Snyk
added 2018/04/17 9:0 p.m.2 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview dotnetzip is a class library and toolset for manipulating zip files. Affected versions of the package are vulnerable to Arbitrary File Write via Archive Extraction AKA "Zip Slip". It is exploited using a specially crafted zip archive, that holds path traversal filenames. When exploited, ...

5.5CVSS7.8AI score0.10395EPSS
Exploits0References2
Snyk
Snyk
added 2018/04/17 9:0 p.m.4 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview net.lingala.zip4j:zip4j is a open source java library to handle zip files. Affected versions of this package are vulnerable to Arbitrary File Write via Archive Extraction Zip Slip. Successful exploitation of this vulnerability can result in remote command execution. Details It is exploit...

6.5CVSS8AI score0.13088EPSS
Exploits1References2
Snyk
Snyk
added 2018/04/13 9:0 p.m.1 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview github.com/mholt/archiver/cmd/archiver makes it trivially easy to make and extract common archive formats such as .zip, and .tar.gz. Simply name the input and output files. Affected versions of the package are vulnerable to Arbitrary File Write via Archive Extraction AKA "Zip Slip". It i...

5.5CVSS7.6AI score0.0253EPSS
Exploits1References2
OSV
OSV
added 2017/12/12 2:29 p.m.6 views

CVE-2017-16691

SAP Note Assistant tool SAP BASIS from 7.00 to 7.02, from 7.10 to 7.11, 7.30, 7.31,7.40, from 7.50 to 7.52 supports upload of digitally signed note file of type 'SAR'. The digital signature verification is done together with the extraction of note file contained in the SAR archive. It is possible...

6.5CVSS5.8AI score0.01254EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/09/17 6:0 p.m.20 views

CVE-2017-14503

libarchive 3.3.2 suffers from an out-of-bounds read within lhareaddatanone in archivereadsupportformatlha.c when extracting a specially crafted lha archive, related to lhacrc16...

6.8AI score0.01956EPSS
Exploits0References8
CVE
CVE
added 2017/06/05 7:0 p.m.50 views

CVE-2017-9442

BigTree CMS (versions up to 4.2.18) is affected by CVE-2017-9442. Remote authenticated users can execute arbitrary code by uploading a crafted package containing a PHP web shell, via ZIP extraction to file name patterns under cache/package/xxx/yyy.php. The issue exists in core/admin/modules/devel...

8.8CVSS8.7AI score0.02451EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2017/06/04 11:29 p.m.6 views

UBUNTU-CVE-2014-9983

Directory Traversal exists in RAR 4.x and 5.x because an unpack operation follows any symlinks, including symlinks contained in the archive. This allows remote attackers to write to arbitrary files via a crafted archive...

5.5CVSS6.2AI score0.01768EPSS
Exploits1References3
OSV
OSV
added 2017/03/09 6:41 p.m.5 views

USN-3225-1 libarchive vulnerabilities

It was discovered that libarchive incorrectly handled hardlink entries when extracting archives. A remote attacker could possibly use this issue to overwrite arbitrary files. CVE-2016-5418 Christian Wressnegger, Alwin Maier, and Fabian Yamaguchi discovered that libarchive incorrectly handled...

8.6CVSS7AI score0.06251EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2017/03/06 12:0 a.m.33 views

Debian DSA-3801-1 : ruby-zip - security update

It was discovered that ruby-zip, a Ruby module for reading and writing zip files, is prone to a directory traversal vulnerability. An attacker can take advantage of this flaw to overwrite arbitrary files during archive extraction via a .. dot dot in an extracted filename. %NASLMINLEVEL 70300 C...

9.8CVSS7.9AI score0.0347EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/01/31 12:0 a.m.50 views

Debian DLA-808-1 : ruby-archive-tar-minitar security update

It has been found that rubygem archive-tar-minitar allows attackers to overwrite arbitrary files during archive extraction via a .. dot dot in an extracted filename. For Debian 7 'Wheezy', these problems have been fixed in version 0.5.2-2+deb7u1. We recommend that you upgrade your...

7.5CVSS7.3AI score0.04742EPSS
Exploits1References3
Rows per page
Query Builder