366 matches found
Astra Linux - уязвимость в unrar-nonfree
RARLAB WinRAR Recovery Volume: Improper validation of array index leads to remote code execution vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability, as the targe...
Astra Linux - уязвимость в unrar-nonfree
RARLAB WinRAR prior to version 7.00, on Linux and UNIX platforms, allowed attackers to spoof the screen output or cause a denial of service, through ANSI escape sequences...
Astra Linux - уязвимость в unrar-nonfree
UnRAR before version 6.2.3 allowed extraction of files outside of the destination folder using symlink chains...
Astra Linux - уязвимость в unrar-nonfree
RARLAB’s UnRAR version prior to 6.12 on Linux and UNIX allowed directory traversal, enabling writing to files during an extraction operation also known as unpacking. This was demonstrated by creating a file named /.ssh/authorizedkeys. NOTE: WinRAR and Android RAR are not affected by this issue...
SUSE CVE-2026-24857
bulkextractor is a digital forensics exploitation tool. Starting in version 1.4, bulkextractor's embedded unrar code has a heap-buffer-overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image causes an out-of-bounds write in Unpack::CopyString, leading to a crash under ASAN and...
CVE-2026-24857
CVE-2026-24857 affects bulk_extractor (bulk extractor). Starting in version 1.4, the embedded unrar code has a heap-buffer-overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image can trigger an out-of-bounds write in Unpack::CopyString, causing a crash under ASAN and likely me...
EUVD-2026-4855
bulkextractor is a digital forensics exploitation tool. Starting in version 1.4, bulkextractor’s embedded unrar code has a heap‑buffer‑overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image causes an out‑of‑bounds write in Unpack::CopyString, leading to a crash under ASAN and...
PT-2026-5229
Name of the Vulnerable Software and Affected Versions bulk extractor versions 1.4 and later Description bulk extractor is a digital forensics exploitation tool. The embedded unrar code within bulk extractor, starting with version 1.4, contains a heap-buffer-overflow in the RAR PPM LZ decoding pat...
Building bulk_extractor security vulnerabilities
Building bulkextractor is a high-performance digital forensics analysis tool developed by Simson L. Garfinkel. Versions of Building bulkextractor 1.4 and later contain security vulnerabilities. These vulnerabilities stem from an overflow in the heap buffer in the embedded unrar code’s RAR PPM LZ...
CVE-2017-12938
UnRAR before 5.5.7 allows remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file...
EUVD-2017-11021
Malware in sbrugna...
EUVD-2017-5634
Malware in sbrugna...
EUVD-2017-4465
Malware in sbrugna...
EUVD-2017-5632
Malware in sbrugna...
EUVD-2017-4462
Malware in sbrugna...
EUVD-2018-13799
Malware in sbrugna...
EUVD-2017-5633
Malware in sbrugna...
EUVD-2012-6548
Malware in sbrugna...
EUVD-2022-51275
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2017-11189
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - unrarlib.c in unrar-free 0.0.1 might allow remote attackers to cause a denial of service NULL pointer dereference and application crash, which could be relevant...