225 matches found
EUVD-2003-1366
Malware in sbrugna...
EUVD-2001-0445
Malware in sbrugna...
EUVD-2007-0266
Malware in sbrugna...
EUVD-2004-1459
Malware in sbrugna...
EUVD-2008-3428
Malware in sbrugna...
EUVD-2006-6867
Malware in sbrugna...
EUVD-2024-49610
Malicious code in bioql PyPI...
EUVD-2025-2096
Malicious code in bioql PyPI...
EUVD-2025-13392
Malicious code in bioql PyPI...
CVE-2008-3442
WinZip before 11.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning...
The vulnerability of the WinZip archive processor relates to the inclusion of a function for processing tags from an unreliable source within the software. This allows attackers to bypass Windows security mechanisms and execute arbitrary code.
The vulnerability of the WinZip archive processor is related to the inclusion of a function for processing “MotW” tags in the software. Exploiting this vulnerability allows an attacker to bypass Windows security mechanisms and execute arbitrary code during the decompression of an archive that...
CVE-2025-33028
In WinZip through 29.0, there is a Mark-of-the-Web Bypass Vulnerability because of an incomplete fix for CVE-2024-8811. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of WinZip. User interaction is required to exploit this...
Winzip for Mac SEoL (8.0.x)
According to its version, Winzip For Mac is 8.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C...
Winzip for Mac SEoL (7.0.x)
According to its version, Winzip For Mac is 7.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C...
CVE-2025-33028
In WinZip through 29.0, there is a Mark-of-the-Web Bypass Vulnerability because of an incomplete fix for CVE-2024-8811. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of WinZip. User interaction is required to exploit this...
CVE-2025-33028
In WinZip through 29.0, there is a Mark-of-the-Web Bypass Vulnerability because of an incomplete fix for CVE-2024-8811. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of WinZip. User interaction is required to exploit this...
WinZip 安全漏洞
WinZip is a powerful compression and encryption tool from WinZip, Inc. A security vulnerability exists in WinZip 29.0 and earlier versions, which stems from a Mark-of-the-Web protection mechanism bypass that could lead to the execution of arbitrary code...
CVE-2025-33028
WinZip
CVE-2025-33028
In WinZip through 29.0, there is a Mark-of-the-Web Bypass Vulnerability because of an incomplete fix for CVE-2024-8811. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of WinZip. User interaction is required to exploit this...
PT-2025-16367 · Winzip · Winzip
Name of the Vulnerable Software and Affected Versions: WinZip versions prior to 29.0 Description: The issue is related to the handling of archived files in WinZip, allowing attackers to bypass the Mark-of-the-Web protection mechanism. This can be exploited when a user extracts files from a crafte...