ROS-2-2137

2.2137 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

ROS-2-2187

2.2187 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

Apache Ant 安全漏洞

Apache Ant is the United States Apache Apache Foundation's set of automation tools for Java software development . The tool is mainly used for software compilation, testing and deployment and so on. A resource management error vulnerability exists in Apache Ant, which stems from the application...

Vulnerabilities fixed in Joomla

Several vulnerabilities have been fixed in Joomla. The vulnerabilities potentially enable a malicious party to launch attacks execute attacks that result in the following categories of damage: Cross-Site Scripting XSS. Manipulation of data Circumvention of security measure The vulnerability with...

Advancecomp Buffer Overflow Vulnerability

advancecomp is a collection of recompression utilities for files in zip, png, mng and gz formats. A buffer overflow vulnerability exists in the 'zip.cc:zipentry::loadcent' function in versions prior to advancecomp 2.1-2018/02. An attacker can exploit the vulnerability to cause a denial of service...

CVE-2018-1056

An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. An attacker could potentially use this flaw to crash the advzip utility by tricking it into processing crafted ZIP files...

DEBIAN-CVE-2018-1056

An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. An attacker could potentially use this flaw to crash the advzip utility by tricking it into processing crafted ZIP files...

USN-2952-1 php5 vulnerabilities

It was discovered that the PHP Zip extension incorrectly handled directories when processing certain zip files. A remote attacker could possibly use this issue to create arbitrary directories. CVE-2014-9767 It was discovered that the PHP Soap client incorrectly validated data types. A remote...

Mozilla Firefox Denial of Service Vulnerability (CNVD-2016-00848)

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in the nsZipArchive function in versions of Mozilla Firefox prior to 44.0. A remote attacker could exploit this vulnerability to cause a denial of service with t...

UBUNTU-CVE-2016-1945

The nsZipArchive function in Mozilla Firefox before 44.0 might allow remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging incorrect use of a pointer during processing of a ZIP archive...

PeaZip <= 2.6.1 Zip Processing Command Injection

No description provided by source. $Id: peazipcommandinjection.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

CursorArts ZipWrangler 'ZIP Processing' Buffer Overflow Vulnerability

CursorArts ZipWrangler is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CursorArts ZipWrangler 'ZIP Processing' Buffer Overflow Vulnerability

This host is installed with CursorArts ZipWrangler and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodcursorartszipwranglerbofvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ CursorArts ZipWrangler 'ZIP Processing' Buffer Overflow Vulnerability Authors: Madhuri D...

PeaZip <= 2.6.1 Zip Processing Command Injection

$Id: peazipcommandinjection.rb 8451 2010-02-11 06:00:12Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...