Lucene search
K

18 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.29 views

RHEL 7 : unzip (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - unzip: Heap-based buffer overflow in fileio.c:UzpPassword function allows code execution CVE-2018-1000035...

7.8CVSS9.3AI score0.30469EPSS
Exploits2References5
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.22 views

CVE-2014-9913 affecting package unzip for versions less than 6.0-20

CVE-2014-9913 affecting package unzip for versions less than 6.0-20. A patched version of the package is available...

4CVSS4.6AI score0.01453EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.19 views

Debian: Security Advisory (DLA-741-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4CVSS4.6AI score0.01835EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.30 views

CVE-2014-9913 affecting package unzip for versions less than 6.0-19

CVE-2014-9913 affecting package unzip for versions less than 6.0-19. A patched version of the package is available...

4CVSS4.7AI score0.01453EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2017-0015)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4CVSS4.7AI score0.01835EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2018:2978-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.30469EPSS
Exploits2References10
OpenVAS
OpenVAS
added 2020/12/17 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-4672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.5AI score0.30469EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2020/12/16 12:0 a.m.57 views

Ubuntu 16.04 LTS / 18.04 LTS : unzip vulnerabilities (USN-4672-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4672-1 advisory. Rene Freingruber discovered that unzip incorrectly handled certain specially crafted password protected ZIP archives. If a user or automated...

7.8CVSS6.1AI score0.30469EPSS
Exploits3References6
CBLMariner
CBLMariner
added 2020/09/09 6:9 a.m.32 views

CVE-2014-9913 affecting package unzip 6.0-19

CVE-2014-9913 affecting package unzip 6.0-19. A patched version of the package is available...

4CVSS7.5AI score0.01453EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/10/06 12:0 a.m.28 views

openSUSE: Security Advisory for unzip (openSUSE-SU-2018:3043-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.9AI score0.30469EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2018/10/03 12:0 a.m.31 views

SUSE SLED12 / SLES12 Security Update : unzip (SUSE-SU-2018:2978-1)

This update for unzip fixes the following security issues : CVE-2014-9913: Specially crafted zip files could trigger invalid memory writes possibly resulting in DoS or corruption bsc1013993 CVE-2015-7696: Specially crafted zip files with password protection could trigger a crash and lead to denia...

7.8CVSS7.2AI score0.30469EPSS
Exploits2References20
Tenable Nessus
Tenable Nessus
added 2018/06/28 12:0 a.m.43 views

EulerOS 2.0 SP3 : unzip (EulerOS-SA-2018-1170)

According to the versions of the unzip package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Buffer overflow in the listfiles function in list.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service crash via vectors...

4CVSS5.6AI score0.01835EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/03/10 12:0 a.m.41 views

SUSE SLES11 Security Update : unzip (SUSE-SU-2017:0639-1)

This update for unzip fixes the following issues : - CVE-2014-9913: Specially crafted zip files could trigger invalid memory writes possibly resulting in DoS or corruption bsc1013993 - CVE-2015-7696: Specially crafted zip files with password protection could trigger a crash and lead to denial of...

6.8CVSS5.6AI score0.07184EPSS
Exploits0References13
OSV
OSV
added 2017/01/18 5:59 p.m.8 views

AZL-35335 CVE-2014-9913 affecting package unzip for versions less than 6.0-20

Buffer overflow in the listfiles function in list.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service crash via vectors related to the compression method...

4CVSS6.3AI score0.01453EPSS
Exploits0References1
OSV
OSV
added 2017/01/18 5:59 p.m.29 views

CVE-2014-9913

Buffer overflow in the listfiles function in list.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service crash via vectors related to the compression method...

4CVSS6.9AI score
Exploits0References11
CVE
CVE
added 2017/01/18 5:0 p.m.126 views

CVE-2014-9913

CVE-2014-9913 refers to a buffer overflow in Info-Zip UnZip 6.0’s list_files function (list.c) that can crash the application via ZIP compression-method-related inputs. Connected records indicate unzip packages in various distros with patches or newer versions (e.g., Mariner entries noting patche...

4CVSS4.1AI score0.01453EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/12/14 12:0 a.m.40 views

Debian DLA-741-1 : unzip security update

'unzip -l' CVE-2014-9913 and 'zipinfo' CVE-2016-9844 were vulnerable to buffer overflows when provided malformed or maliciously-crafted ZIP files. For Debian 7 'Wheezy', these problems have been fixed in version 6.0-8+deb7u6. We recommend that you upgrade your unzip packages. NOTE: Tenable Networ...

4CVSS5.9AI score0.01835EPSS
Exploits0References4
OSV
OSV
added 2016/12/13 12:0 a.m.29 views

DLA-741-1 unzip - security update

Bulletin has no description...

4CVSS4.5AI score0.01835EPSS
Exploits0
Rows per page
Query Builder