Zip Slip Vulnerability Exploit

l1MT5lr4p9o/default.jpg

Zip Slip is an arbitrary file overwrite vulnerability. It affects thousands of projects across many ecosystems but is especially prevalent in Java, where there is no central library offering high level processing of archive (e.g. zip) files.

This video shows a live exploit of this vulnerability on a Java application deployed in a Heroku cloud instance.

For more information, see http://snyk.io/research/zip-slip-vuln...

For the latest and to contribute to the status of vulnerable libraries see http://github.com/snyk/zip-slip-vulne...

l1MT5lr4p9o/default.jpg
Zip Slip Vulnerability Exploit Zip Slip Vulnerability Exploit Reviewed by Dump3R H3id3gg3R on June 05, 2018 Rating: 5