130 matches found
CVE-2016-4300
Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...
CVE-2016-4300
Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...
Integer overflow
Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...
CVE-2016-4300
CVE-2016-4300 affects libarchive, specifically the read_SubStreamsInfo function in archive_read_support_format_7zip.c. Before version 3.2.1, processing a 7-zip file with a large number of substreams can trigger a heap-based buffer overflow, enabling remote code execution under the described condi...
CVE-2016-4300
Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...
CVE-2016-4300
Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...
CVE-2016-4300
Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...
SUSE SLED12 / SLES12 Security Update : libarchive (SUSE-SU-2016:1909-1)
libarchive was updated to fix 20 security issues. These security issues were fixed : - CVE-2015-8918: Overlapping memcpy in CAB parser bsc985698. - CVE-2015-8919: Heap out of bounds read in LHA/LZH parser bsc985697. - CVE-2015-8920: Stack out of bounds read in ar parser bsc985675. - CVE-2015-8921...
openSUSE Security Update : libarchive (openSUSE-2016-969)
libarchive was updated to fix 20 security issues. These security issues were fixed : - CVE-2015-8918: Overlapping memcpy in CAB parser bsc985698. - CVE-2015-8919: Heap out of bounds read in LHA/LZH parser bsc985697. - CVE-2015-8920: Stack out of bounds read in ar parser bsc985675. - CVE-2015-8921...
Multi Manage File Compressor
This module zips a file or a directory. On Linux, it uses the zip command. On Windows, it will try to use remote target's 7Zip if found. If not, it falls back to its Windows Scripting Host. This module requires Metasploit: https://metasploit.com/download Current source:...
CVE-2016-4300
Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...
Libarchive 7zip read_SubStreamsInfo Code Execution Vulnerability
SUMMARY An exploitable \heap overflow vulnerability exists in the 7zip readSubStreamsInfo functionality of libarchive. A specially crafted 7zip file can cause a integer overflow resulting in memory corruption that can lead to code execution. An attacker can send a malformed file to trigger this...
SUSE SLED12 / SLES12 Security Update : p7zip (SUSE-SU-2016:1593-1)
This update for p7zip fixes the following issues : - add p7zip-9.20.1-CVE-2016-2335.patch to fix 7zip UDF CInArchive::ReadFileItem code execution vulnerability bsc979823, CVE-2016-2335 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...
7Zip UDF CInArchive::ReadFileItem Code Execution Vulnerability
7Zip is prone to a code execution vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:7-zip:7-zip"; ifdescription...
CVE-2016-2335
The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service out-of-bounds read or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file...
CVE-2016-2335
The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service out-of-bounds read or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file...
Out-of-bounds
The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service out-of-bounds read or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file...
CVE-2016-2335
The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service out-of-bounds read or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file...
CVE-2016-2335
7-Zip/p7zip vulnerability CVE-2016-2335 affects the CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp for 7zip 9.20 and 15.05 beta, enabling out-of-bounds read and potential code execution via the PartitionRef in the Long Allocation Descriptor of a UDF file. Connected advisories confirm a ...
CVE-2016-2335
The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service out-of-bounds read or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file...