2 matches found
PT-2025-13872
Name of the Vulnerable Software and Affected Versions macOS versions prior to 13.7.5 macOS Sequoia versions prior to 15.4 macOS Sonoma versions prior to 14.7.5 Description The issue allows a malicious JAR file to bypass Gatekeeper checks due to improper handling of executable types. Recommendatio...
PT-2019-2899 · Icedtea +4 · Icedtea-Web +4
Name of the Vulnerable Software and Affected Versions: icedtea-web versions 1.7.2 and earlier icedtea-web versions 1.8.2 and earlier Description: The issue is related to a zip-slip attack during auto-extraction of a JAR file, which could allow an attacker to write files to arbitrary locations. Th...