Info-ZIP group

2 exploits Active since Jun 2003
CVE-2003-0282 NOMISEC WORKING POC
UnZip 5.50 - Directory Traversal via Invalid Dot Character Filtering
Directory traversal vulnerability in UnZip 5.50 allows attackers to overwrite arbitrary files via invalid characters between two . (dot) characters, which are filtered and result in a ".." sequence.
CVE-2019-13232 WRITEUP LOW WRITEUP
Info-ZIP UnZip 6.0 - Denial of Service via Overlapping Files in ZIP Container
Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service (resource consumption), aka a "better zip bomb" issue.
CVSS 3.3