Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
archive zip vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-33196
In archive/zip in Go prior to 1.15.13 and 1.16.x prior to 1.16.5, a crafted file count (in an archive's header) can cause a NewReader or OpenReader panic.
Golang Go
Debian Debian Linux 9.0
7.5
CVSSv2
CVE-2006-2909
Stack-based buffer overflow in the info tip shell extension (zipinfo.dll) in PicoZip 4.01 allows remote malicious users to execute arbitrary code via a long filename in an (1) ACE, (2) RAR, or (3) ZIP archive, which is triggered when the user moves the mouse over the archive.
Picozip Picozip 4.01
1 EDB exploit
7.5
CVSSv2
CVE-2004-1096
Archive::Zip Perl module prior to 1.14, when used by antivirus programs such as amavisd-new, allows remote malicious users to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being op...
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Etrust Ez Antivirus 6.2
Broadcom Etrust Ez Antivirus 6.3
Ca Etrust Secure Content Manager 1.0
Broadcom Etrust Secure Content Manager 1.1
Broadcom Etrust Antivirus 7.0
Ca Etrust Antivirus 7.0 Sp2
Broadcom Etrust Ez Armor 2.0
Broadcom Etrust Ez Armor 2.3
Broadcom Inoculateit 6.0
Eset Software Nod32 Antivirus 1.0.11
Rav Antivirus Rav Antivirus Desktop 8.6
Rav Antivirus Rav Antivirus For File Servers 1.0
Sophos Sophos Anti-virus 3.81
Sophos Sophos Anti-virus 3.82
Sophos Sophos Anti-virus 3.83
Kaspersky Lab Kaspersky Anti-virus 5.0
Mcafee Antivirus Engine 4.3.20
Sophos Sophos Anti-virus 3.79
Sophos Sophos Anti-virus 3.80
Sophos Sophos Small Business Suite 1.0
Broadcom Etrust Antivirus Gateway 7.1
1 EDB exploit
5
CVSSv2
CVE-2008-3447
The scanning engine in F-Prot Antivirus 6.2.1 4252 allows remote malicious users to cause a denial of service (infinite loop) via a malformed ZIP archive, probably related to invalid offsets.
F-prot F-prot Antivirus 6.2.1.4252
F-prot Scanning Engine 4.4.4.56
1 EDB exploit
4.3
CVSSv2
CVE-2015-7697
Info-ZIP UnZip 6.0 allows remote malicious users to cause a denial of service (infinite loop) via empty bzip2 data in a ZIP archive.
Debian Debian Linux 8.0
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Debian Debian Linux 7.0
Unzip Project Unzip 6.0
1 Github repository
6.8
CVSSv2
CVE-2015-7696
Info-ZIP UnZip 6.0 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) or possibly execute arbitrary code via a crafted password-protected ZIP archive, possibly related to an Extra-Field size value.
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 15.04
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Unzip Project Unzip 6.0
6.8
CVSSv2
CVE-2016-4313
Directory traversal vulnerability in unzip/extract feature in eXtplorer 2.1.9 allows remote malicious users to execute arbitrary files via a .. (dot dot) in an archive file.
Extplorer Extplorer 2.1.9
1 EDB exploit
5.1
CVSSv2
CVE-2006-1985
Heap-based buffer overflow in BOM BOMArchiveHelper 10.4 (6.3) Build 312, as used in Mac OS X 10.4.6 and previous versions, allows user-assisted malicious users to execute arbitrary code via a crafted archive (such as ZIP) that contains long path names, which triggers an error in ...
Apple Safari 2.0
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 2.0.3
Apple Mac Os X 10.3
Apple Mac Os X 10.3.1
Apple Mac Os X 10.3.8
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.6
Apple Mac Os X Server 10.3
Apple Mac Os X Server 10.3.8
Apple Mac Os X Server 10.3.9
Apple Mac Os X Server 10.4.6
Apple Mac Os X 10.3.2
Apple Mac Os X 10.3.3
Apple Mac Os X 10.4
Apple Mac Os X 10.4.1
Apple Mac Os X Server 10.3.1
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.3.3
Apple Mac Os X Server 10.4
Apple Mac Os X Server 10.4.1
1 EDB exploit
9.3
CVSSv2
CVE-2005-2618
Multiple stack-based buffer overflows in Autonomy (formerly Verity) KeyView SDK prior to 9.2.0, as used in Lotus Notes 6.5.4 and 7.0, allow remote malicious users to execute arbitrary code via (1) a UUE file containing an encoded file with a long filename handled by uudrdr.dll, (...
Autonomy Keyview Export Sdk
Autonomy Keyview Filter Sdk
Ibm Lotus Notes 6.5
Ibm Lotus Notes 6.5.1
Autonomy Keyview Viewer Sdk
Ibm Lotus Notes 6.0.1
Ibm Lotus Notes 6.5.2
Ibm Lotus Notes 6.5.3
Ibm Lotus Notes 6.5.4
Ibm Lotus Notes 6.0.2
Ibm Lotus Notes 6.0.3
Ibm Lotus Notes 7.0
Ibm Lotus Notes 6.0.4
Ibm Lotus Notes 6.0.5
5.1
CVSSv2
CVE-2006-3497
Unspecified vulnerability in the "compression state handling" in Bom for Apple Mac OS X 10.3.9 and 10.4.7 allows user-assisted malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Zip archive.
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.7
Apple Mac Os X Server 10.3.9
Apple Mac Os X Server 10.4.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »