14 matches found
EUVD-2006-3978
Malware in sbrugna...
EUVD-2014-2357
Malware in sbrugna...
EUVD-2021-15341
Malware in sbrugna...
Xxe
The XML parser used in ConeXware PowerArchiver before 20.10.02 allows processing of external entities, which might lead to exfiltration of local files over the network via an XXE attack...
CVE-2021-28684
The XML parser used in ConeXware PowerArchiver before 20.10.02 allows processing of external entities, which might lead to exfiltration of local files over the network via an XXE attack...
ConeXware PowerArchiver弱加密漏洞
Bugtraq ID:66174 CVE ID:CVE-2014-2319 ConeXware PowerArchiver是一款压缩工具。 如果在GUI中用户选择AES加密,ConeXware PowerArchiver会以不安全加密方法来创建文件。如选择"AES 256-bit"进行加密软件会使用PKZIP加密来代替。 0 ConeXware PowerArchiver 14.02.03 ConeXware PowerArchiver 14.02.05已经修复该漏洞,建议用户下载更新: http://www.powerarchiver.com...
CVE-2014-2319
The Encrypt Files feature in ConeXware PowerArchiver before 14.02.05 uses legacy ZIP encryption even if the AES 256-bit selection is chosen, which makes it easier for context-dependent attackers to obtain sensitive information via a known-plaintext attack...
CVE-2014-2319
The Encrypt Files feature in ConeXware PowerArchiver before 14.02.05 uses legacy ZIP encryption even if the AES 256-bit selection is chosen, which makes it easier for context-dependent attackers to obtain sensitive information via a known-plaintext attack...
Heap overflow
Heap-based buffer overflow in ConeXware PowerArchiver before 10.20.21 might allow remote attackers to execute arbitrary code via a long filename in a BlackHole archive...
Stack overflow
Multiple stack-based buffer overflows in the 1 LoadTree and 2 ReadHeader functions in PAISO.DLL 1.7.3.0 1.7.3 beta in ConeXware PowerArchiver 2006 9.64.02 allow user-assisted attackers to execute arbitrary code via a crafted ISO file containing a file within several nested directories...
CVE-2007-0097
CVE-2007-0097 affects PowerArchiver (ConeXware) PAISO.DLL 1.7.3.0 (1.7.3 beta) within PowerArchiver 2006 9.64.02. The vulnerability consists of multiple stack-based buffer overflows in the LoadTree and ReadHeader functions when handling ISO images, specifically when processing the full pathname o...
CVE-2006-3985
Stack-based buffer overflow in DZIPS32.DLL 6.0.0.4 in ConeXware PowerArchiver 9.62.03 allows user-assisted attackers to execute arbitrary code by adding a new file to a crafted ZIP archive that already contains a file with a long name...
CVE-2006-3985
CVE-2006-3985 affects ConeXware PowerArchiver 9.62.03 via DZIPS32.DLL 6.0.0.4, where a stack-based buffer overflow occurs when a crafted ZIP archive containing a long-named file is processed. This allows a user‑assisted attacker to execute arbitrary code. The connected records confirm the vulnera...
CVE-2006-3985
Stack-based buffer overflow in DZIPS32.DLL 6.0.0.4 in ConeXware PowerArchiver 9.62.03 allows user-assisted attackers to execute arbitrary code by adding a new file to a crafted ZIP archive that already contains a file with a long name...