Lucene search
MitreCVELIST:CVE-2019-13623HistoryJul 17, 2019 - 2:07 a.m.
CVE-2019-13623
2019-07-1702:07:04
mitre
www.cve.org
3
EPSS
0.007
Percentile
79.9%
In NSA Ghidra before 9.1, path traversal can occur in RestoreTask.java (from the package ghidra.app.plugin.core.archive) via an archive with an executable file that has an initial …/ in its filename. This allows attackers to overwrite arbitrary files in scenarios where an intermediate analysis result is archived for sharing with other persons. To achieve arbitrary code execution, one approach is to overwrite some critical Ghidra modules, e.g., the decompile module.
Related
exploitpack
exploitpack
Ghidra (Linux) 9.0.4 - .gar Arbitrary Code Execution
2019-08-12 00:00:00
osv
osv
CVE-2019-13623
2019-07-17 03:15:10
zdt
zdt
Ghidra (Linux) 9.0.4 - .gar Arbitrary Code Execution Exploit
2019-08-12 00:00:00
exploitdb
exploitdb
Ghidra (Linux) 9.0.4 - .gar Arbitrary Code Execution
2019-08-12 00:00:00
packetstorm
packetstorm
Ghidra (Linux) 9.0.4 Arbitrary Code Execution
2019-08-12 00:00:00
ubuntucve
ubuntucve
CVE-2019-13623
2019-07-17 00:00:00
cve
cve
CVE-2019-13623
2019-07-17 03:15:10
prion
prion
Path traversal
2019-07-17 03:15:00
nvd
nvd
CVE-2019-13623
2019-07-17 03:15:10
threatpost
threatpost
New Bug Found in NSA’s Ghidra Tool
2019-09-30 17:02:47