Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2004-1010HistoryMar 01, 2005 - 5:00 a.m.
CVE-2004-1010
2005-03-0105:00:00
Debian Security Bug Tracker
security-tracker.debian.org
8
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.175 Low
EPSS
Percentile
96.2%
Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | zip | < 2.30-8 | zip_2.30-8_all.deb |
| Debian | 11 | all | zip | < 2.30-8 | zip_2.30-8_all.deb |
| Debian | 10 | all | zip | < 2.30-8 | zip_2.30-8_all.deb |
| Debian | 999 | all | zip | < 2.30-8 | zip_2.30-8_all.deb |
| Debian | 13 | all | zip | < 2.30-8 | zip_2.30-8_all.deb |
Related
nessus
nessus
GLSA-200411-16 : zip: Path name buffer overflow
2004-11-13 00:00:00
FreeBSD : zip -- long path buffer overflow (40549bbf-43b5-11d9-a9e7-0001020eed82)
2005-07-13 00:00:00
Mandrake Linux Security Advisory : zip (MDKSA-2004:141)
2004-11-27 00:00:00
ubuntucve
ubuntucve
CVE-2004-1010
2005-03-01 00:00:00
freebsd
freebsd
zip -- long path buffer overflow
2004-10-03 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-624-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200411-16 (zip)
2008-09-24 00:00:00
FreeBSD Ports: zip
2008-09-04 00:00:00
nvd
nvd
CVE-2004-1010
2005-03-01 05:00:00
ubuntu
ubuntu
zip vulnerability
2004-11-06 00:00:00
debian
debian
[SECURITY] [DSA 624-1] New zip packages fix arbitrary code execution
2005-01-05 08:13:50
[SECURITY] [DSA 624-1] New zip packages fix arbitrary code execution
2005-01-05 08:13:50
cve
cve
CVE-2004-1010
2005-03-01 05:00:00
gentoo
gentoo
zip: Path name buffer overflow
2004-11-09 00:00:00
redhat
redhat
(RHSA-2004:634) zip security update
2004-12-16 00:00:00
cvelist
cvelist
CVE-2004-1010
2004-11-09 05:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.175 Low
EPSS
Percentile
96.2%
Related for DEBIANCVE:CVE-2004-1010