Lucene search

RedosROS-20240711-03

HistoryJul 11, 2024 - 12:00 a.m.

ROS-20240711-03

2024-07-1100:00:00

redos.red-soft.ru

ntfs file handler

7-zip archiver

buffer overflow

remote execution

information disclosure

unix

CVSS3

8.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.8

Confidence

Low

JSON

Vulnerability of NTFS file handler NtfsHandler.cpp of 7-Zip archiver is related to the possibility of heap-based buffer overflow
of a heap-based buffer overflow. Exploitation of the vulnerability could allow an attacker, acting remotely,
execute arbitrary code

A vulnerability in the NTFS file handler NtfsHandler.cpp of the 7-Zip archiver is related to an operation exceeding the boundaries of a buffer in memory.
buffer in memory. Exploitation of the vulnerability could allow an intruder acting remotely, allowing an
the intruder to disclose protected information

OSVersionArchitecturePackageVersionFilename
redos7.3x86_647zip< 24.07-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
redos	7.3	x86_64	7zip	< 24.07-1	UNKNOWN

CVSS3

8.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.8

Confidence

Low

JSON

Related for ROS-20240711-03