The attacker can then overwrite executable files and either invoke them remotely or wait for the system or user to call them, thus achieving remote command execution on the victim’s machine. The Zip Slip vulnerability can affect numerous archive formats, including zip, jar, tar, war, cpio, apk, rar and 7z. The vulnerability is exploited using a specially crafted archive that holds directory traversal filenames (e.g././evil.exe). Versions of the package prior to 2.11.0 are vulnerable to Arbitrary File Write via Archive Extraction (AKA 'Zip Slip').
MCMS v5.2.4 was discovered to have an arbitrary file upload vulnerability in the New Template module, which allows attackers to execute arbitrary code via a crafted ZIP file.īytecode Viewer (BCV) is a Java/Android reverse engineering suite.