Lucene search
K

11 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:39 a.m.2 views

SUSE CVE-2017-14166

libarchive 3.3.2 allows remote attackers to cause a denial of service xmldata heap-based buffer over-read and application crash via a crafted xar archive, related to the mishandling of empty strings in the atol8 function in archivereadsupportformatxar.c...

6.1CVSS6.9AI score0.03341EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:20 a.m.2 views

SUSE CVE-2018-1000085

ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xarhashcheck that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The victim must scan a crafted XAR file. This...

7.5CVSS9.2AI score0.0167EPSS
Exploits0References10
OSV
OSV
added 2022/11/22 12:0 a.m.27 views

CVE-2022-41937 Missing Authorization in XWiki Platform

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. The application allows anyone with view access to modify any page of the wiki by importing a crafted XAR package. The problem has been patched in XWiki 14.6RC1, 14.6 and 13.10.8. As a...

9.6CVSS7.6AI score0.00732EPSS
Exploits0References5
Veracode
Veracode
added 2020/05/10 11:24 p.m.20 views

Denial Of Service (DoS)

clamav is vulnerable to denial of service DoS. The vulenrability exists as a Out of bounds heap memory read vulnerability in XAR parser, function xarhashcheck that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The victim must sca...

5.5CVSS3.4AI score0.0167EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/09/17 12:0 a.m.34 views

EulerOS 2.0 SP2 : libarchive (EulerOS-SA-2019-1849)

According to the versions of the libarchive package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libarchive 3.3.2 allows remote attackers to cause a denial of service xmldata heap-based buffer over-read and application crash via a crafted...

6.5CVSS6.2AI score0.03341EPSS
Exploits0References3
CNVD
CNVD
added 2018/03/14 12:0 a.m.1 views

ClamAV Out-of-Bounds Heap Memory Read Vulnerability

Clam AntiVirus ClamAV is an anti-virus package for use on UNIX-like systems. Mainly used in mail servers, using multi-threaded background operation, you can automatically upgrade the virus database. An out-of-bounds heap memory read vulnerability exists in the xarhashcheck function in the XAR...

5.5CVSS8.7AI score0.0167EPSS
Exploits0References1
OSV
OSV
added 2018/03/13 3:29 p.m.1 views

DEBIAN-CVE-2018-1000085

ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xarhashcheck that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The victim must scan a crafted XAR file. This...

5.5CVSS6.8AI score0.0167EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2017/09/06 6:0 p.m.42 views

CVE-2017-14166

libarchive 3.3.2 allows remote attackers to cause a denial of service xmldata heap-based buffer over-read and application crash via a crafted xar archive, related to the mishandling of empty strings in the atol8 function in archivereadsupportformatxar.c...

6.5CVSS6.9AI score0.03341EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/09/06 6:0 p.m.20 views

CVE-2017-14166

libarchive 3.3.2 allows remote attackers to cause a denial of service xmldata heap-based buffer over-read and application crash via a crafted xar archive, related to the mishandling of empty strings in the atol8 function in archivereadsupportformatxar.c...

6.5CVSS6.7AI score0.03341EPSS
Exploits0
OSV
OSV
added 2017/09/06 12:0 a.m.2 views

UBUNTU-CVE-2017-14166

libarchive 3.3.2 allows remote attackers to cause a denial of service xmldata heap-based buffer over-read and application crash via a crafted xar archive, related to the mishandling of empty strings in the atol8 function in archivereadsupportformatxar.c...

6.5CVSS6.9AI score0.03341EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2010/11/16 9:0 p.m.7 views

CVE-2010-3798

Heap-based buffer overflow in xar in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted xar archive...

6.8CVSS8.3AI score0.03367EPSS
Exploits0
Rows per page
Query Builder