Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
7-zip 7-zip vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2016-2334
Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZlibFile method in 7zip prior to 16.00 and p7zip allows remote malicious users to execute arbitrary code via a crafted HFS+ image.
7-zip 7-zip
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Oracle Solaris
2 Github repositories
7.5
CVSSv3
CVE-2016-9296
A null pointer dereference bug affects the 16.02 and many old versions of p7zip. A lack of null pointer check for the variable folders.PackPositions in function CInArchive::ReadAndDecodePackedStreams in CPP/7zip/Archive/7z/7zIn.cpp, as used in the 7z.so library and in 7z applicat...
7-zip P7zip 16.02
1 Github repository
8.8
CVSSv3
CVE-2016-2335
The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote malicious users to cause a denial of service (out-of-bounds read) or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file.
Opensuse Opensuse 13.2
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7-zip 7-zip 9.20
7-zip 7-zip 15.05
1 Github repository
NA
CVE-2015-1038
p7zip 9.20.1 allows remote malicious users to write to arbitrary files via a symlink attack in an archive.
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Oracle Solaris 10.0
Oracle Solaris 11.2
7-zip P7zip 9.20.1
NA
CVE-2012-4932
Multiple cross-site scripting (XSS) vulnerabilities in SimpleInvoices before stable-2012-1-CIS3000 allow remote malicious users to inject arbitrary web script or HTML via (1) the having parameter in a manage action to index.php; (2) the Email field in an Add User action; (3) the ...
Simple Invoices Simple Invoices
Simple Invoices Simple Invoices 2007-05-25
Simple Invoices Simple Invoices 2007-01-25
Simple Invoices Simple Invoices 2006-12-11
Simple Invoices Simple Invoices 2007-02-02
1 EDB exploit
NA
CVE-2008-6536
Unspecified vulnerability in 7-zip prior to 4.5.7 has unknown impact and remote attack vectors, as demonstrated by the PROTOS GENOME test suite for Archive Formats (c10).
7-zip 7-zip 4.55
7-zip 7-zip 4.54
7-zip 7-zip 4.42
7-zip 7-zip 4.43
7-zip 7-zip 4.37
7-zip 7-zip 4.38
7-zip 7-zip 4.35
7-zip 7-zip 4.27
7-zip 7-zip 4.25
7-zip 7-zip 3.13
7-zip 7-zip
7-zip 7-zip 4.40
7-zip 7-zip 4.41
7-zip 7-zip 4.48
7-zip 7-zip 4.49
7-zip 7-zip 4.33
7-zip 7-zip 4.36
7-zip 7-zip 4.23
7-zip 7-zip 4.26
7-zip 7-zip 4.51
7-zip 7-zip 4.50
7-zip 7-zip 4.46
NA
CVE-2007-4725
Stack consumption vulnerability in AkkyWareHOUSE 7-zip32.dll prior to 4.42.00.04, as derived from Igor Pavlov 7-Zip prior to 4.53 beta, allows user-assisted remote malicious users to execute arbitrary code via a long filename in an archive, leading to a heap-based buffer overflow...
7-zip 7-zip
7-zip 7-zip 4.43
7-zip 7-zip 4.44
7-zip 7-zip 4.45
7-zip 7-zip 4.46
7-zip 7-zip 4.47
7-zip 7-zip 4.48
7-zip 7-zip 4.49
7-zip 7-zip 4.50
7-zip 7-zip 4.51
7-zip 7-zip 4.52
1 EDB exploit
NA
CVE-2006-3135
Multiple SQL injection vulnerabilities in CMS Mundo 1.0 build 008, and possibly other versions, allow remote malicious users to execute arbitrary SQL commands via the (1) news_id parameter in the (a) news module, (2) searchstring parameter in (b) the search module, (3) id paramet...
Hotwebscripts Cms Mundo 1.0 Build 008
NA
CVE-2005-3051
Stack-based buffer overflow in the ARJ plugin (arj.dll) 3.9.2.0 for 7-Zip 3.13, 4.23, and 4.26 BETA, as used in products including Turbo Searcher, allows remote malicious users to execute arbitrary code via a large ARJ block.
Igor Pavlov 7-zip 3.13
Igor Pavlov 7-zip 4.23
Igor Pavlov 7-zip 4.26 Beta
NA
CVE-2005-2670
Directory traversal vulnerability in HAURI Anti-Virus products including ViRobot Expert 4.0, Advanced Server, Linux Server 2.0, and LiveCall allows remote malicious users to overwrite arbitrary files via ".." sequences in filenames contained in (1) ACE, (2) ARJ, (3) CAB...
Hauri Livecall
Hauri Virobot Expert 4.0
Hauri Virobot Advanced Server
Hauri Virobot Linux Server 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2