Lucene search

K
freebsdFreeBSD063399FC-F6D6-11DC-BCEE-001C2514716C
HistoryMar 18, 2008 - 12:00 a.m.

bzip2 -- crash with certain malformed archive files

2008-03-1800:00:00
vuxml.freebsd.org
15

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.097 Low

EPSS

Percentile

94.8%

SecurityFocus reports:

The ‘bzip2’ application is prone to a remote file-handling
vulnerability because the application fails to properly
handle malformed files.
Exploit attempts likely result in application crashes.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchbzip2< 1.0.5UNKNOWN

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.097 Low

EPSS

Percentile

94.8%