2 matches found
PT-2026-22043
NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.1638.0 and 6.5.1638.0, NanaZip’s .NET Single File Application parser has an out-of-bounds read vulnerability in manifest parsing. A crafted bundle can provide a malformed RelativePathLength so the...
Apple Mac OS X Code Signature Bypass Vulnerability (CNVD-2015-02357)
Apple Mac OS X is an operating system developed by Apple Inc. A vulnerability exists in Apple Mac OS X's handling of applications containing specially crafted bundles, which allows attackers to exploit the vulnerability to launch tampered applications without the need for a full legal signature...