ROS-20240806-01

A vulnerability in the Apache Commons Compress archiver is related to the execution of a loop without sufficiently limiting the the number of times it can be executed. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service by using specially crafted 7...

PT-2022-4140 · Rockwell Automation · Isagraf Workbench

Name of the Vulnerable Software and Affected Versions: Rockwell Automation ISaGRAF Workbench software versions 6.0 through 6.6.9 Description: The issue is related to a Path Traversal vulnerability. A crafted malicious .7z exchange file may allow an attacker to gain the privileges of the ISaGRAF...

SUSE: Security Advisory (SUSE-SU-2018:0464-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : p7zip (openSUSE-2018-188)

This update for p7zip fixes the following security issues : - CVE-2016-1372: Fixed multiple vulnerabilities when processing crafted 7z files bsc984650 - CVE-2017-17969: Fixed a heap-based buffer overflow in a shrink decoder bsc1077725 - CVE-2018-5996: Fixed memory corruption in RAR decompression...

SUSE SLED12 / SLES12 Security Update : p7zip (SUSE-SU-2018:0464-1)

This update for p7zip fixes the following issues: Security issues fixed : - CVE-2016-1372: Fixed multiple vulnerabilities when processing crafted 7z files bsc984650 - CVE-2017-17969: Fixed a heap-based buffer overflow in a shrink decoder bsc1077725 - CVE-2018-5996: Fixed memory corruption in RAR...

ClamAV < 0.99.2 Multiple Vulnerabilities

Binary data 9793.prm...

CVE-2016-9296

A null pointer dereference bug affects the 16.02 and many old versions of p7zip. A lack of null pointer check for the variable folders.PackPositions in function CInArchive::ReadAndDecodePackedStreams in CPP/7zip/Archive/7z/7zIn.cpp, as used in the 7z.so library and in 7z applications, will cause ...

CVE-2016-9296

A null pointer dereference bug affects the 16.02 and many old versions of p7zip. A lack of null pointer check for the variable folders.PackPositions in function CInArchive::ReadAndDecodePackedStreams in CPP/7zip/Archive/7z/7zIn.cpp, as used in the 7z.so library and in 7z applications, will cause ...

CVE-2016-9296

The CVE-2016-9296 issue affects p7zip 16.02 and older, caused by a null pointer dereference in CInArchive::ReadAndDecodePackedStreams (CPP/7zip/Archive/7z/7zIn.cpp) used by the 7z.so library and 7z apps. This can crash and trigger a denial of service when decoding malformed 7z files. Remediation ...

CVE-2016-9296

A null pointer dereference bug affects the 16.02 and many old versions of p7zip. A lack of null pointer check for the variable folders.PackPositions in function CInArchive::ReadAndDecodePackedStreams in CPP/7zip/Archive/7z/7zIn.cpp, as used in the 7z.so library and in 7z applications, will cause ...

ClamAV < 0.99.2 Multiple libclamav DoS

According to its version, the ClamAV clamd antivirus daemon running on the remote host is prior to 0.99.2. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists in the libclamav library when handling specially crafted mew packer executables. An...

CVE-2010-0098

ClamAV before 0.96 does not properly handle the 1 CAB and 2 7z file formats, which allows remote attackers to bypass virus detection via a crafted archive that is compatible with standard archive utilities...