Picozip

Picozip

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2007-1673

Exploit
  • EPSS 1.32%
  • Published 09.05.2007 01:19:00
  • Last modified 09.04.2025 00:30:58

unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

7.8

CVE-2007-2536

Exploit
  • EPSS 4.29%
  • Published 09.05.2007 01:19:00
  • Last modified 09.04.2025 00:30:58

PicoZip allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

6.8

CVE-2007-2058

  • EPSS 0.45%
  • Published 18.04.2007 03:19:00
  • Last modified 09.04.2025 00:30:58

Directory traversal vulnerability in Acubix PicoZip 4.02 allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in the file path in an (1) GZ, (2) TAR, (3) RAR, (4) JAR, or (5) ZIP archive.

7.5

CVE-2006-2909

  • EPSS 26.17%
  • Published 16.06.2006 10:02:00
  • Last modified 03.04.2025 01:03:51

Stack-based buffer overflow in the info tip shell extension (zipinfo.dll) in PicoZip 4.01 allows remote attackers to execute arbitrary code via a long filename in an (1) ACE, (2) RAR, or (3) ZIP archive, which is triggered when the user moves the mou...