5 matches found
Remote code execution
An active network attacker MiTM can achieve remote code execution on a machine that runs IKARUS Anti Virus 2.16.7. IKARUS AV for Windows uses cleartext HTTP for updates along with a CRC32 checksum and an update value for verification of the downloaded files. The attacker first forces the client t...
CVE-2017-15643
The CVE-2017-15643 entry concerns IKARUS Anti Virus for Windows 2.16.7. Multiple connected documents confirm an active attacker can achieve remote code execution via a MITM-capable update pathway: IKARUS AV uses cleartext HTTP for updates; an attacker can coerce the client into an update, then re...
Amazon Linux AMI : unzip (ALAS-2015-504)
A buffer overflow was found in the way unzip uncompressed certain extra fields of a file. A specially crafted Zip archive could cause unzip to crash or, possibly, execute arbitrary code when the archive was tested with unzip's '-t' option. CVE-2014-9636 A buffer overflow flaw was found in the way...
Medium: unzip
Issue Overview: A buffer overflow was found in the way unzip uncompressed certain extra fields of a file. A specially crafted Zip archive could cause unzip to crash or, possibly, execute arbitrary code when the archive was tested with unzip's '-t' option. CVE-2014-9636 A buffer overflow flaw was...
Scientific Linux Security Update : unzip on SL6.x, SL7.x i386/x86_64 (20150318)
A buffer overflow was found in the way unzip uncompressed certain extra fields of a file. A specially crafted Zip archive could cause unzip to crash or, possibly, execute arbitrary code when the archive was tested with unzip's '-t' option. CVE-2014-9636 A buffer overflow flaw was found in the way...