6 matches found
PeaZip Compressed Filename Command Injection (CVE-2009-2261)
A command injection vulnerability exists in PeaZip. A remote attacker may exploit this vulnerability by sending a specially crafted Zip file to a target user, and convince him to open this file with PeaZip. Successful exploitation would allow an attacker to execute commands in the security contex...
PeaZIP 2.6.1 - Zip Processing Command Injection (Metasploit)
$Id: peazipcommandinjection.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
PeaZIP Remote Code Execution Vulnerability (Windows)
This host is installed with PeaZIP and is prone to Remote Code Execution vulnerability. OpenVAS Vulnerability Test $Id: gbpeazipcodeexecvuln.nasl 4869 2016-12-29 11:01:45Z teissa $ PeaZIP Remote Code Execution Vulnerability Windows Authors: Nikita MR Copyright: Copyright c 2009 Greenbone Networks...
CVE-2009-2261
PeaZIP 2.6.1, 2.5.1, and earlier on Windows allows user-assisted remote attackers to execute arbitrary commands via a .zip archive with a .txt file whose name contains | pipe characters and a command...
CVE-2009-2261
PeaZip on Windows (versions 2.6.1, 2.5.1 and earlier) is vulnerable to a command-injection flaw in ZIP processing. A specially crafted ZIP containing a .txt filename with a pipe character (|) can cause arbitrary commands to execute when the user opens the archive with PeaZip, enabling code execut...
CVE-2009-2261
creationtimestamp| type| source ---|---|--- 2009-06-05 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8881 2010-09-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16307 2018-05-29 15:50:33+00:00| seen|...