Lucene search
K

130 matches found

NVD
NVD
added 2016/09/21 2:25 p.m.28 views

CVE-2016-4300

Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...

7.8CVSS8AI score0.04919EPSS
Exploits2References12
OSV
OSV
added 2016/09/21 2:25 p.m.25 views

CVE-2016-4300

Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...

7.8CVSS8.2AI score
Exploits0References12
Prion
Prion
added 2016/09/21 2:25 p.m.27 views

Integer overflow

Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...

6.8CVSS8.4AI score0.04919EPSS
Exploits2References12Affected Software8
CVE
CVE
added 2016/09/21 2:0 p.m.139 views

CVE-2016-4300

CVE-2016-4300 affects libarchive, specifically the read_SubStreamsInfo function in archive_read_support_format_7zip.c. Before version 3.2.1, processing a 7-zip file with a large number of substreams can trigger a heap-based buffer overflow, enabling remote code execution under the described condi...

7.8CVSS8.2AI score0.04919EPSS
Exploits2References12Affected Software1
Cvelist
Cvelist
added 2016/09/21 2:0 p.m.25 views

CVE-2016-4300

Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...

8.2AI score0.04919EPSS
Exploits2References12
Debian CVE
Debian CVE
added 2016/09/21 2:0 p.m.26 views

CVE-2016-4300

Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...

7.8CVSS8.3AI score0.04919EPSS
Exploits2
AlpineLinux
AlpineLinux
added 2016/09/21 2:0 p.m.46 views

CVE-2016-4300

Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...

7.8CVSS8.3AI score0.04919EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2016/08/29 12:0 a.m.43 views

SUSE SLED12 / SLES12 Security Update : libarchive (SUSE-SU-2016:1909-1)

libarchive was updated to fix 20 security issues. These security issues were fixed : - CVE-2015-8918: Overlapping memcpy in CAB parser bsc985698. - CVE-2015-8919: Heap out of bounds read in LHA/LZH parser bsc985697. - CVE-2015-8920: Stack out of bounds read in ar parser bsc985675. - CVE-2015-8921...

7.8CVSS7AI score0.11992EPSS
Exploits14References61
Tenable Nessus
Tenable Nessus
added 2016/08/16 12:0 a.m.38 views

openSUSE Security Update : libarchive (openSUSE-2016-969)

libarchive was updated to fix 20 security issues. These security issues were fixed : - CVE-2015-8918: Overlapping memcpy in CAB parser bsc985698. - CVE-2015-8919: Heap out of bounds read in LHA/LZH parser bsc985697. - CVE-2015-8920: Stack out of bounds read in ar parser bsc985675. - CVE-2015-8921...

7.8CVSS7AI score0.11992EPSS
Exploits14References40
Metasploit
Metasploit
added 2016/08/02 7:44 p.m.41 views

Multi Manage File Compressor

This module zips a file or a directory. On Linux, it uses the zip command. On Windows, it will try to use remote target's 7Zip if found. If not, it falls back to its Windows Scripting Host. This module requires Metasploit: https://metasploit.com/download Current source:...

7AI score
Exploits0
UbuntuCve
UbuntuCve
added 2016/06/23 12:0 a.m.23 views

CVE-2016-4300

Integer overflow in the readSubStreamsInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large number of substreams, which triggers a heap-based buffer overflow...

7.8CVSS7.7AI score0.04919EPSS
Exploits2References4
Talos
Talos
added 2016/06/19 12:0 a.m.34 views

Libarchive 7zip read_SubStreamsInfo Code Execution Vulnerability

SUMMARY An exploitable \heap overflow vulnerability exists in the 7zip readSubStreamsInfo functionality of libarchive. A specially crafted 7zip file can cause a integer overflow resulting in memory corruption that can lead to code execution. An attacker can send a malformed file to trigger this...

7.8CVSS7.9AI score0.04919EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2016/06/17 12:0 a.m.39 views

SUSE SLED12 / SLES12 Security Update : p7zip (SUSE-SU-2016:1593-1)

This update for p7zip fixes the following issues : - add p7zip-9.20.1-CVE-2016-2335.patch to fix 7zip UDF CInArchive::ReadFileItem code execution vulnerability bsc979823, CVE-2016-2335 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

8.8CVSS8AI score0.09795EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2016/06/13 12:0 a.m.32 views

7Zip UDF CInArchive::ReadFileItem Code Execution Vulnerability

7Zip is prone to a code execution vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:7-zip:7-zip"; ifdescription...

8.8CVSS8.4AI score0.09795EPSS
Exploits2References3
NVD
NVD
added 2016/06/07 2:6 p.m.22 views

CVE-2016-2335

The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service out-of-bounds read or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file...

8.8CVSS8.8AI score0.09795EPSS
Exploits2References13
OSV
OSV
added 2016/06/07 2:6 p.m.6 views

CVE-2016-2335

The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service out-of-bounds read or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file...

8.8CVSS8.8AI score
Exploits0References13
Prion
Prion
added 2016/06/07 2:6 p.m.23 views

Out-of-bounds

The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service out-of-bounds read or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file...

6.8CVSS8.1AI score0.09795EPSS
Exploits2References13Affected Software3
Cvelist
Cvelist
added 2016/06/07 2:0 p.m.20 views

CVE-2016-2335

The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service out-of-bounds read or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file...

8.8AI score0.09795EPSS
Exploits2References13
CVE
CVE
added 2016/06/07 2:0 p.m.120 views

CVE-2016-2335

7-Zip/p7zip vulnerability CVE-2016-2335 affects the CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp for 7zip 9.20 and 15.05 beta, enabling out-of-bounds read and potential code execution via the PartitionRef in the Long Allocation Descriptor of a UDF file. Connected advisories confirm a ...

8.8CVSS8.3AI score0.09795EPSS
Exploits2References13Affected Software1
Debian CVE
Debian CVE
added 2016/06/07 2:0 p.m.28 views

CVE-2016-2335

The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service out-of-bounds read or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file...

8.8CVSS8.5AI score0.09795EPSS
Exploits2
Rows per page
Query Builder