Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PickleScan Security Bypass via Bad CRC in ZIP Archive
Vulnerability Description
An Improper Handling of Exceptional Conditions vulnerability in the ZIP archive scanning component of mmaitre314 picklescan allows a remote attacker to bypass security scans. This is achieved by crafting a ZIP archive containing a file with a bad Cyclic Redundancy Check (CRC), which causes the scanner to halt and fail to analyze the contents for malicious pickle files. When the file incorrectly considered safe is loaded, it can lead to the execution of malicious code.
CVSS Information
N/A
Vulnerability Type
对异常条件的处理不恰当
Vulnerability Title
picklescan 安全漏洞
Vulnerability Description
picklescan是Matthieu Maitre个人开发者的一个安全扫描程序。 picklescan存在安全漏洞,该漏洞源于ZIP存档扫描组件处理异常条件不当,可能导致绕过安全扫描并执行恶意代码。
CVSS Information
N/A
Vulnerability Type
N/A