25 matches found
Astra Linux - уязвимость в p7zip
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size: buffer+512i-2, for i=9, i=10, i=11, etc...
EUVD-2022-25226
Malicious code in bioql PyPI...
CVE-2022-1958
A vulnerability classified as critical has been found in FileCloud. Affected is an unknown function of the component NTFS Handler. The manipulation leads to improper access controls. It is possible to launch the attack remotely. Upgrading to version 21.3.5.18513 is able to address this issue. It ...
7-Zip < 24.01 Heap-based Buffer Overflow
The version of 7-Zip installed on the remote Windows host is below 24.01. It is, therefore, affected by multiple vulnerabilities: - The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offse...
Medium: p7zip
Issue Overview: The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size: buffer+512i-2, for i=9, i=10, i=11, etc. CVE-2023-52168 The NtfsHandler.cpp NTF...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : p7zip (SUSE-SU-2024:2625-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2625-1 advisory. - CVE-2023-52168: Fixed heap-based buffer overflow in the NTFS handler allows two bytes to be...
SUSE-SU-2024:2625-1 Security update for p7zip
This update for p7zip fixes the following issues: - CVE-2023-52168: Fixed heap-based buffer overflow in the NTFS handler allows two bytes to be overwritten at multiple offsets bsc1227358 - CVE-2023-52169: Fixed out-of-bounds read in NTFS handler bsc1227359...
SUSE SLES12 Security Update : p7zip (SUSE-SU-2024:2475-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2475-1 advisory. - CVE-2023-52168: Fixed heap-based buffer overflow in the NTFS handler allows two bytes to be overwritten at multiple offsets...
SUSE-SU-2024:2475-1 Security update for p7zip
This update for p7zip fixes the following issues: - CVE-2023-52168: Fixed heap-based buffer overflow in the NTFS handler allows two bytes to be overwritten at multiple offsets bsc1227358 - CVE-2023-52169: Fixed out-of-bounds read in NTFS handler bsc1227359...
SUSE CVE-2023-52168
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size: buffer+512i-2, for i=9, i=10, i=11, etc...
DEBIAN-CVE-2023-52169
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains an out-of-bounds read that allows an attacker to read beyond the intended buffer. The bytes read beyond the intended buffer are presented as a part of a filename listed in the file system image. This has security relevance in...
DEBIAN-CVE-2023-52168
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size: buffer+512i-2, for i=9, i=10, i=11, etc...
CVE-2023-52169
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains an out-of-bounds read that allows an attacker to read beyond the intended buffer. The bytes read beyond the intended buffer are presented as a part of a filename listed in the file system image. This has security relevance in...
CVE-2023-52168
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size: buffer+512i-2, for i=9, i=10, i=11, etc...
UBUNTU-CVE-2023-52169
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains an out-of-bounds read that allows an attacker to read beyond the intended buffer. The bytes read beyond the intended buffer are presented as a part of a filename listed in the file system image. This has security relevance in...
UBUNTU-CVE-2023-52168
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size: buffer+512i-2, for i=9, i=10, i=11, etc...
7-Zip Security Vulnerabilities
7-Zip is a compression software. A security vulnerability exists in versions prior to 7-Zip 24.01, which stems from an out-of-bounds read vulnerability in the NtfsHandler.cpp NTFS handler program that allows an attacker to read more than the expected buffer...
CVE-2023-52169
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains an out-of-bounds read that allows an attacker to read beyond the intended buffer. The bytes read beyond the intended buffer are presented as a part of a filename listed in the file system image. This has security relevance in...
CVE-2023-52168
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size: buffer+512i-2, for i=9, i=10, i=11, etc...
PT-2024-4473 · Igor Pavlov +7 · 7-Zip +7
Name of the Vulnerable Software and Affected Versions: 7-Zip versions prior to 24.01 Description: The issue is related to a heap-based buffer overflow in the NtfsHandler.cpp NTFS handler. This overflow allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size,...