5 matches found
CVE-2015-1315
CVE-2015-1315 : Buffer overflow in Info-ZIP UnZip 6.10b (charset_to_intern in unix/unix.c) allows remote code execution via a crafted string, demonstrated by CP866→UTF-8 conversion. Public sources confirm the vulnerability and note that outside Brocade SANnav, updates to unzip packages address th...
[USN-2502-1] unzip vulnerabilities
========================================================================== Ubuntu Security Notice USN-2502-1 February 17, 2015 unzip vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
Ubuntu: Security Advisory (USN-2502-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD : unzip -- heap based buffer overflow in iconv patch (3680b234-b6f0-11e4-b7cc-d050992ecde8)
Ubuntu Security Notice USN-2502-1 reports : unzip could be made to run programs if it opened a specially crafted file. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018...
CVE-2015-1315
Buffer overflow in the charsettointern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8...