25 matches found
EUVD-2010-2443
Malware in sbrugna...
EUVD-2018-1456
Malware in sbrugna...
EUVD-2010-3159
Malware in sbrugna...
EUVD-2020-16910
Malware in sbrugna...
CVE-2010-3159
Untrusted search path vulnerability in Explzh 5.67 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory...
CVE-2020-24175
Buffer overflow in Yz1 0.30 and 0.32, as used in IZArc 4.4, ZipGenius 6.3.2.3116, and Explzh extension 8.14, allows attackers to execute arbitrary code via a crafted archive file, related to filename handling...
Buffer overflow
Buffer overflow in Yz1 0.30 and 0.32, as used in IZArc 4.4, ZipGenius 6.3.2.3116, and Explzh extension 8.14, allows attackers to execute arbitrary code via a crafted archive file, related to filename handling...
CVE-2020-24175
CVE-2020-24175 describes a buffer overflow in Yz1 0.30/0.32 as used by IZArc 4.4, ZipGenius 6.3.2.3116, and Explzh (extension) 8.14. in which crafted archive files trigger the overflow during filename handling, allowing arbitrary code execution. The affected components are the Yz1 implementations...
Explzh Path Traversal Vulnerability
Explzh is a zip file extraction tool. A path traversal vulnerability exists in Explzh 7.58 and earlier versions, which can be exploited by an attacker to read arbitrary files...
CVE-2018-0646
Directory traversal vulnerability in Explzh v.7.58 and earlier allows an attacker to read arbitrary files via unspecified vectors...
CVE-2018-0646
Directory traversal vulnerability in Explzh v.7.58 and earlier allows an attacker to read arbitrary files via unspecified vectors...
Directory traversal
Directory traversal vulnerability in Explzh v.7.58 and earlier allows an attacker to read arbitrary files via unspecified vectors...
CVE-2018-0646
Directory traversal vulnerability in Explzh v.7.58 and earlier allows an attacker to read arbitrary files via unspecified vectors...
CVE-2018-0646
CVE-2018-0646 affects Explzh up to v7.58 with a directory traversal vulnerability (CWE-22). Exploitation allows reading arbitrary files via absolute path traversal during extraction, as described in JVN/JVNDB sources. Affected product: Explzh v.7.58 and earlier. Root cause: directory traversal du...
JVN#55813866: Explzh vulnerable to directory traversal
Explzh is a file compression/extraction software supporting multiple file formats. Explzh contains a directory traversal vulnerability CWE-22. Explzh is not vulnerable to relative path traversal but to absolute path traversal. Therefore, an attacker may create new files or overwrite existing file...
CVE-2010-3159
Untrusted search path vulnerability in Explzh 5.67 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory...
Design/Logic Flaw
Untrusted search path vulnerability in Explzh 5.67 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory...
CVE-2010-3159
Untrusted search path vulnerability in Explzh 5.67 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory...
CVE-2010-3159
CVE-2010-3159 affects Explzh up to version 5.67, where an unsafe file search path may cause loading of unintended executables (.exe) when extracting files. This could allow an attacker to execute arbitrary code with the application’s privileges. Root cause: insecure executable loading due to how ...
Explzh may insecurely load executable files
Overview Explzh may use unsafe methods for determining how to load executables .exe. Explzh is a file compression/extraction software supporting multiple file formats. Explzh loads certain executables .exe when extracting files. Explzh contains an issue with the file search path, which may...