Lucene search
+L

12 matches found

nvd
nvd
added yesterday7 views

CVE-2026-61449

Grav 2.0.1 contains a decompression-bomb size-cap bypass in ZipArchiver and GPM\Installer. The size bound introduced in 2.0.1 sums the uncompressed size declared in each entry's ZIP central-directory header ZipArchive::statIndex'size' and rejects archives exceeding...

7.1CVSS
Exploits0References2
osv
osv
added 6 days ago3 views

CVE-2026-61455 Grav before 2.0.1 Decompression Bomb via ZipArchiver

Grav before 2.0.1 contains a decompression bomb vulnerability in ZipArchiver::extract that lacks limits on uncompressed size, file count, and nesting depth. Attackers can supply a crafted ZIP archive that expands to fill available disk space, causing denial of service by exhausting storage...

7.1CVSS6.1AI score0.00249EPSS
Exploits0References4
cve
cve
added 6 days ago6 views

CVE-2026-61455

Grav before 2.0.1 contains a decompression bomb vulnerability in ZipArchiver::extract() that lacks limits on uncompressed size, file count, and nesting depth. A crafted ZIP archive can expand to fill available disk space, causing denial of service by exhausting storage resources. This CVE (CVE-20...

7.1CVSS6.1AI score0.00249EPSS
Exploits0References2
euvd
euvd
added 2025/10/07 12:30 a.m.9 views

EUVD-2014-0650

Malware in sbrugna...

6.9CVSS6.4AI score0.00642EPSS
Exploits2References4
avleonov
avleonov
added 2025/06/21 1:39 p.m.69 views

June “In the Trend of VM” (#16): vulnerabilities in Microsoft Windows, Apache HTTP Server, the web interfaces of MDaemon and Zimbra, and the 7-Zip archiver

June "In the Trend of VM" 16: vulnerabilities in Microsoft Windows, Apache HTTP Server, the web interfaces of MDaemon and Zimbra, and the 7-Zip archiver. A traditional monthly vulnerability roundup. Post on Habr rus Digest on the PT website rus A total of 7 trending vulnerabilities: Elevation of...

9.1CVSS6.9AI score0.99957EPSS
Exploits4
redos
redos
added 2024/07/13 12:0 a.m.23 views

ROS-20240711-03

Vulnerability of NTFS file handler NtfsHandler.cpp of 7-Zip archiver is related to the possibility of heap-based buffer overflow of a heap-based buffer overflow. Exploitation of the vulnerability could allow an attacker, acting remotely, execute arbitrary code A vulnerability in the NTFS file...

8.4CVSS6.8AI score0.00989EPSS
Exploits1
gitee
gitee
added 2017/04/10 9:25 a.m.4 views

EQGRP

This is a repository containing three ELF files: 7z, 7z.so, and 7za. The files are likely related to the 7-Zip file archiver, a popular tool for compressing and decompressing files. The ELF files are likely used as plugins or extensions for the 7-Zip software. The files are compiled for Linux and...

7AI score
Exploits0
nvd
nvd
added 2014/10/23 2:55 p.m.19 views

CVE-2014-0619

Untrusted search path vulnerability in Hamster Free ZIP Archiver 2.0.1.7 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the current working directory...

6.9CVSS7.2AI score0.00642EPSS
Exploits2References2
prion
prion
added 2014/10/23 2:55 p.m.15 views

Design/Logic Flaw

Untrusted search path vulnerability in Hamster Free ZIP Archiver 2.0.1.7 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the current working directory...

6.9CVSS7.6AI score0.00642EPSS
Exploits2References2Affected Software1
cve
cve
added 2014/10/23 2:0 p.m.41 views

CVE-2014-0619

Hamster Free ZIP Archiver 2.0.1.7 is affected by a DLL hijacking vulnerability (dwmapi.dll) in the current working directory, enabling local users to achieve arbitrary code execution. The issue stems from an untrusted search path, as reported for CVE-2014-0619, with exploit details showing a Troj...

6.9CVSS7.4AI score0.00642EPSS
Exploits2References2Affected Software1
cvelist
cvelist
added 2014/10/23 2:0 p.m.23 views

CVE-2014-0619

Untrusted search path vulnerability in Hamster Free ZIP Archiver 2.0.1.7 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the current working directory...

7.2AI score0.00642EPSS
Exploits2References2
packetstorm
packetstorm
added 2014/10/16 12:0 a.m.36 views

Hamster Free ZIP Archiver 2.0.1.7 DLL Hijacking

/ Title: Hamster Free ZIP Archiver Dll Hijacking Exploit 2.0.1.7 dwmapi.dll Version: 2.0.1.7 Tested on: Windows XP SP2 en Vendor: http://www.hamstersoft.com/ Software-Link: http://www.hamstersoft.com/online/hfzasite/hfzasite30034b26122013.exe E-Mail: osandaatunseen.is Author: Osanda Malith...

6.9CVSS6.8AI score0.00642EPSS
Exploits2
Rows per page
Query Builder