2 matches found
PT-2026-4506
Name of the Vulnerable Software and Affected Versions LogonExpert version 8.1 Description LogonExpert 8.1 has an unquoted service path issue within the LogonExpertSvc service, which operates with LocalSystem privileges. This allows attackers to potentially place malicious executables in...
The vulnerability of the unacev2.dll library of the WinRAR file compressor allows attackers to deploy malicious files outside the extraction directory.
The vulnerability of the unacev2.dll file archiver in WinRAR is related to insufficient checking of the file name field during extraction. Exploiting this vulnerability allows a remote attacker to place malicious files outside the extraction directory, using a specially crafted ACE archive...