66 matches found
EUVD-2010-2378
Malware in sbrugna...
EUVD-2015-0915
Malware in sbrugna...
EUVD-2007-6144
Malware in sbrugna...
EUVD-2010-3158
Malware in sbrugna...
EUVD-2006-4026
Malware in sbrugna...
EUVD-2017-11341
Malware in sbrugna...
EUVD-2008-2019
Malware in sbrugna...
EUVD-2015-0914
Malware in sbrugna...
EUVD-2007-5029
Malware in sbrugna...
CVE-2017-2158
Improper verification when expanding ZIP64 archives in Lhaplus versions 1.73 and earlier may lead to unintended contents to be extracted from a specially crafted ZIP64 archive...
Input validation
Improper verification when expanding ZIP64 archives in Lhaplus versions 1.73 and earlier may lead to unintended contents to be extracted from a specially crafted ZIP64 archive...
CVE-2017-2158
Improper verification when expanding ZIP64 archives in Lhaplus versions 1.73 and earlier may lead to unintended contents to be extracted from a specially crafted ZIP64 archive...
CVE-2017-2158
Improper verification when expanding ZIP64 archives in Lhaplus versions 1.73 and earlier may lead to unintended contents to be extracted from a specially crafted ZIP64 archive...
CVE-2017-2158
CVE-2017-2158 affects Lhaplus (versions 1.73 and earlier) due to improper verification when expanding ZIP64 archives. A crafted ZIP64 archive can cause unintended contents to be extracted, indicating a potential information exposure risk. The issue is documented across multiple sources (NVD, JVN,...
Lhaplus Improper Authentication Vulnerability
Lhaplus is a set of file compression and decompression software. A security vulnerability exists in Lhaplus 1.73 and earlier versions that stems from the program's failure to properly handle ZIP64 archives. The vulnerability can be exploited by an attacker to obtain information from specially...
Lhaplus vulnerable to improper verification when expanding ZIP64 archives
Overview Lhaplus is file compression/decompression software. Lhaplus does not treat ZIP64 archives properly when expanding. Koji Ando of LAC Co., Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An...
JVN#57842148: Lhaplus vulnerable to improper verification when expanding ZIP64 archives
Lhaplus is file compression/decompression software. Lhaplus does not treat ZIP64 archives properly when expanding. Impact An unintended content may be extracted from a crafted ZIP64 archive. Solution Update the Software Update to the latest version according to the information provided by the...
Installer and self-extracting archive containing the installer of MLIT DenshiSeikabutsuSakuseiShienKensa system may insecurely load Dynamic Link Libraries
Overview The installer and the self-extracting archive including the installer of MLIT DenshiSeikabutsuSakuseiShienKensa system contain an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Eili Masami of Tachibana Lab. reported this vulnerability...
Lhaplus Malicious File Buffer Overflow Vulnerability
Lhaplus is a set of file compression and decompression software. A buffer overflow vulnerability exists in Lhaplus that could allow a remote attacker to construct a specially crafted archive and trick a user into parsing it to execute arbitrary code...
Lhaplus Directory Traversal Vulnerability
Lhaplus is a set of file compression and decompression software. A directory traversal vulnerability exists in Lhaplus that could allow a remote attacker to construct a specially crafted archive and write arbitrary files to the system...