12 matches found
GootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade Detection
The JavaScript aka JScript malware loader called GootLoader has been observed using a malformed ZIP archive that's designed to sidestep detection efforts by concatenating anywhere from 500 to 1,000 archives. "The actor creates a malformed archive as an anti-analysis technique," Expel security...
EUVD-2023-50497
Malicious code in bioql PyPI...
CVE-2023-46270
MacPaw The Unarchiver before 4.3.6 contains vulnerability related to missing quarantine attributes for extracted items...
MacPaw Way The Unarchiver 安全漏洞
MacPaw Way The Unarchiver is a free decompression software from MacPaw Way that supports many common and older compression formats. A security vulnerability exists in MacPaw Way The Unarchiver version 6.4.0, which originated from a vulnerability that allows an attacker to inject arbitrary code vi...
CVE-2023-46270
MacPaw The Unarchiver before 4.3.6 contains vulnerability related to missing quarantine attributes for extracted items...
CVE-2023-46270
MacPaw The Unarchiver before 4.3.6 contains vulnerability related to missing quarantine attributes for extracted items...
CVE-2023-46270
The CVE-2023-46270 entry concerns MacPaw The Unarchiver before 4.3.6, with a vulnerability due to missing quarantine attributes for extracted items. Affected software is MacPaw The Unarchiver versions prior to 4.3.6; root cause is lack of isolation/quarantine metadata on extracted files. The docu...
CVE-2023-46270
MacPaw The Unarchiver before 4.3.6 contains vulnerability related to missing quarantine attributes for extracted items...
MacPaw 安全漏洞
MacPaw is a Mac-specific decompression application from MacPaw, Inc. A security vulnerability exists in MacPaw versions prior to 4.3.6, which stems from a vulnerability in Unarchiver that contains a vulnerability related to the lack of an isolation attribute for extracted items...
PT-2023-25975 · Unknown +1 · Plexis Archiver +1
Name of the Vulnerable Software and Affected Versions: Plexis Archiver versions prior to 4.8.0 Description: The issue arises when using AbstractUnArchiver for extracting an archive, potentially leading to arbitrary file creation and possibly remote code execution. This occurs when an archive entr...
The Unarchiver 3.11.1 - .tar.Z Crash (PoC)
The Unarchiver 3.11.1 - .tar.Z Crash PoC Exploit Title: The Unarchiver 3.11.1 '.tar.Z' Local Crash PoC Date: 10-17-2016 Exploit Author: Antonio Z. Vendor Homepage: http://unarchiver.c3.cx/unarchiver Software Link: http://unarchiver.c3.cx/downloads/TheUnarchiver3.11.1.zip Version: 3.11.1 Tested on...
The Unarchiver 3.11.1 - '.tar.Z' Crash (PoC)
Exploit Title: The Unarchiver 3.11.1 '.tar.Z' Local Crash PoC Date: 10-17-2016 Exploit Author: Antonio Z. Vendor Homepage: http://unarchiver.c3.cx/unarchiver Software Link: http://unarchiver.c3.cx/downloads/TheUnarchiver3.11.1.zip Version: 3.11.1 Tested on: OS X 10.10, OS X 10.11, OS X 10.12 More...