Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
archiver vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-0619
Untrusted search path vulnerability in Hamster Free ZIP Archiver 2.0.1.7 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the current working directory.
Hamstersoft Hamster Free Zip Archiver 2.0.1.7
NA
CVE-2004-0850
Star prior to 1.5_alpha46 does not drop the effective user ID (euid) before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to reference a malicious program.
Joerg Schilling Star Tape Archiver 1.5 A45
NA
CVE-2015-0556
Open-source ARJ archiver 3.10.22 allows remote malicious users to conduct directory traversal attacks via a symlink attack in an ARJ archive.
Arj Software Arj Archiver
Fedoraproject Fedora 21
Fedoraproject Fedora 20
Fedoraproject Fedora 22
NA
CVE-2015-0557
Open-source ARJ archiver 3.10.22 does not properly remove leading slashes from paths, which allows remote malicious users to conduct absolute path traversal attacks and write to arbitrary files via multiple leading slashes in a path in an ARJ archive.
Arj Software Arj Archiver
Fedoraproject Fedora 22
Fedoraproject Fedora 21
Fedoraproject Fedora 20
NA
CVE-2015-2782
Buffer overflow in Open-source ARJ archiver 3.10.22 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ARJ archive.
Debian Debian Linux 7.0
Fedoraproject Fedora 21
Fedoraproject Fedora 20
Fedoraproject Fedora 22
Arj Software Arj Archiver 3.10.22
NA
CVE-2008-0971
Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in Barracuda Spam Firewall (BSF) prior to 3.5.12.007, Message Archiver prior to 1.2.1.002, Web Filter prior to 3.3.0.052, IM Firewall prior to 3.1.01.017, and Load Balancer prior to 2.3.024 allow remote malicious us...
Barracuda Networks Barracuda Spam Firewall
Barracuda Networks Barracuda Im Firewall
Barracuda Networks Barracuda Load Balancer
Barracuda Networks Barracuda Message Archiver
Barracuda Networks Barracuda Web Filter
1 Github repository
NA
CVE-2008-4779
Stack-based buffer overflow in TUGzip 3.5.0.0 allows remote malicious users to denial of service (crash) or execute arbitrary code via a long filename in a .zip file.
Tguzip Tguzip 3.5.5.0.0
3 EDB exploits
9.8
CVSSv3
CVE-2018-5377
Discuz! DiscuzX X3.4 allows remote malicious users to bypass intended access restrictions via the archiver\index.php action parameter.
Discuz Discuzx X3.4
5.3
CVSSv3
CVE-2023-7216
A path traversal vulnerability was found in the CPIO utility. This issue could allow a remote unauthenticated malicious user to trick a user into opening a specially crafted archive. During the extraction process, the archiver could follow symlinks outside of the intended directo...
Gnu Cpio -
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
NA
CVE-2024-0406
A flaw exists in the mholt/archiver package. This flaw allows an malicious user to create a specially crafted tar file, which, when unpacked, may allow access to restricted files or directories. This issue can allow the creation or overwriting of files with the user's or app...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »