Unzip 安全漏洞

Unzip is a Golang.zip decompression tool developed by Yige’s developers. Versions of Unzip prior to 2.215 contained security vulnerabilities. These vulnerabilities stemmed from failing to catch exceptions when parsing zip headers with incorrect DOS date formats. As a result, an exception was thro...

PYSEC-2025-21

picklescan before 0.0.23 fails to detect malicious pickle files inside PyTorch model archives when certain ZIP file flag bits are modified. By flipping specific bits in the ZIP file headers, an attacker can embed malicious pickle files that remain undetected by PickleScan while still being...

Cloud Foundry Diego Privilege Gain Vulnerability

Cloud Foundry Diego is a container management system used in the Cloud Foundry cloud computing platform from the Cloud Foundry Foundation in the United States. A security vulnerability exists in Cloud Foundry Diego versions prior to 2.8.0, which stems from the program's failure to properly filter...

Archive-Searcher-(.zip)

Software : Archive Searcher 2.1 Author : Lincoln OS : Windows Tested on : XP SP3 En VirtualBox Zip Headers header1= "\x50\x4b\x03\x04\x14\x00\x00\x00" + "\x00\x00\xb7\xac\xce\x34\x00\x00" + "\x00\x00\x00\x00\x00\x00\x00\x00" + "\x00\xe4\x0f\x00\x00\x00" header2= "\x50\x4b\x01\x02\x14\x00\x14\x00"...

SyncBack-Freeware-3.2.20.0

Software : SyncBack Freeware V3.2.20.0 Author : Lincoln Date : May 19, 2010 Reference : http://www.corelan.be:8800/advisories.php?id=CORELAN-10-041 OS : Windows puts "+ Exploit for SyncBack Freeware V3.2.20.0" Zip Headers header1= "\x50\x4B\x03\x04\x14\x00\x00\x00" +...

Urgent Backup 3.20 / ABC Backup Pro 5.20 / ABC Backup 5.50 (.zip) SEH

Exploit for windows platform in category local exploits ===================================================================== Urgent Backup 3.20 / ABC Backup Pro 5.20 / ABC Backup 5.50 .zip SEH ===================================================================== !/usr/bin/ruby Software : Urgent...

Archive Searcher 2.1 SEH Overwrite

!/usr/bin/ruby Software : Archive Searcher 2.1 Author : Lincoln OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : SEH Greetz to : Corelan Security Team http://www.corelan.be:8800/index.php/security/corelan-team-members/ Script provided 'as is', without any warranty. Use for educational...

Archive Searcher .zip Stack Overflow

Exploit for windows platform in category local exploits ==================================== Archive Searcher .zip Stack Overflow ==================================== !/usr/bin/ruby Software : Archive Searcher 2.1 Author : Lincoln OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : SEH...

Archive Searcher - .zip Local Stack Overflow

Archive Searcher - .zip Local Stack Overflow !/usr/bin/ruby Software : Archive Searcher 2.1 Author : Lincoln OS : Windows Tested on : XP SP3 En VirtualBox Type of vuln : SEH Greetz to : Corelan Security Team http://www.corelan.be:8800/index.php/security/corelan-team-members/ Script provided 'as...

CVE-2010-0263

Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Office SharePoint Server 2007 SP1 and SP2 do not validate ZIP headers...

CVE-2010-0263

Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2; and Office SharePoint Server 2007 SP1 and SP2 do not validate ZIP headers...

CVE-2005-0133

ClamAV 0.80 and earlier allows remote attackers to cause a denial of service clamd daemon crash via a ZIP file with malformed headers...