PickleScan Security Bypass via Bad CRC in ZIP Archive

An Improper Handling of Exceptional Conditions vulnerability in the ZIP archive scanning component of mmaitre314 picklescan allows a remote attacker to bypass security scans. This is achieved by crafting a ZIP archive containing a file with a bad Cyclic Redundancy Check (CRC), which causes the scanner to halt and fail to analyze the contents for malicious pickle files. When the file incorrectly considered safe is loaded, it can lead to the execution of malicious code.

N/A

对异常条件的处理不恰当

picklescan 安全漏洞

picklescan是Matthieu Maitre个人开发者的一个安全扫描程序。 picklescan存在安全漏洞，该漏洞源于ZIP存档扫描组件处理异常条件不当，可能导致绕过安全扫描并执行恶意代码。

N/A

N/A