2 matches found
PT-2026-48412
Ghidra before 12.0.2 contains a path traversal vulnerability in the extension installer that fails to validate ZIP entry names during extraction. Attackers can craft malicious extensions with traversal sequences like ../ in filenames to write arbitrary files outside the intended directory, enabli...
CVE-2000-0477
Buffer overflow in Norton Antivirus for Exchange NavExchange allows remote attackers to cause a denial of service via a .zip file that contains long file names...