Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
archiver vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2004-0850
Star prior to 1.5_alpha46 does not drop the effective user ID (euid) before calling external programs, which could allow local users to gain privileges by modifying the RSH environment variable to reference a malicious program.
Joerg Schilling Star Tape Archiver 1.5 A45
6.9
CVSSv2
CVE-2014-0619
Untrusted search path vulnerability in Hamster Free ZIP Archiver 2.0.1.7 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the current working directory.
Hamstersoft Hamster Free Zip Archiver 2.0.1.7
5.8
CVSSv2
CVE-2015-0556
Open-source ARJ archiver 3.10.22 allows remote malicious users to conduct directory traversal attacks via a symlink attack in an ARJ archive.
Arj Software Arj Archiver
Fedoraproject Fedora 21
Fedoraproject Fedora 20
Fedoraproject Fedora 22
5.8
CVSSv2
CVE-2015-0557
Open-source ARJ archiver 3.10.22 does not properly remove leading slashes from paths, which allows remote malicious users to conduct absolute path traversal attacks and write to arbitrary files via multiple leading slashes in a path in an ARJ archive.
Arj Software Arj Archiver
Fedoraproject Fedora 22
Fedoraproject Fedora 21
Fedoraproject Fedora 20
7.5
CVSSv2
CVE-2015-2782
Buffer overflow in Open-source ARJ archiver 3.10.22 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ARJ archive.
Debian Debian Linux 7.0
Fedoraproject Fedora 21
Fedoraproject Fedora 20
Fedoraproject Fedora 22
Arj Software Arj Archiver 3.10.22
3.5
CVSSv2
CVE-2008-0971
Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in Barracuda Spam Firewall (BSF) prior to 3.5.12.007, Message Archiver prior to 1.2.1.002, Web Filter prior to 3.3.0.052, IM Firewall prior to 3.1.01.017, and Load Balancer prior to 2.3.024 allow remote malicious us...
Barracuda Networks Barracuda Spam Firewall
Barracuda Networks Barracuda Im Firewall
Barracuda Networks Barracuda Load Balancer
Barracuda Networks Barracuda Message Archiver
Barracuda Networks Barracuda Web Filter
1 Github repository
10
CVSSv2
CVE-2008-4779
Stack-based buffer overflow in TUGzip 3.5.0.0 allows remote malicious users to denial of service (crash) or execute arbitrary code via a long filename in a .zip file.
Tguzip Tguzip 3.5.5.0.0
3 EDB exploits
7.5
CVSSv2
CVE-2018-5377
Discuz! DiscuzX X3.4 allows remote malicious users to bypass intended access restrictions via the archiver\index.php action parameter.
Discuz Discuzx X3.4
NA
CVE-2023-7216
A path traversal vulnerability was found in the CPIO utility. This issue could allow a remote unauthenticated malicious user to trick a user into opening a specially crafted archive. During the extraction process, the archiver could follow symlinks outside of the intended directo...
Gnu Cpio -
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
NA
CVE-2024-0406
A flaw exists in the mholt/archiver package. This flaw allows an malicious user to create a specially crafted tar file, which, when unpacked, may allow access to restricted files or directories. This issue can allow the creation or overwriting of files with the user's or app...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »