Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2020/05/13 12:0 a.m.34 views

GLSA-202005-01 : Long Range ZIP: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202005-01 Long Range ZIP: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Long Range ZIP. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could entice a user to...

7.8CVSS6.7AI score0.01597EPSS
Exploits0References9
Prion
Prion
added 2019/03/30 3:29 p.m.18 views

Code injection

The lzo1xdecompress function in liblzo2.so.2 in LZO 2.10, as used in Long Range Zip aka lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive, a different vulnerability than CVE-2017-8845...

4.3CVSS5.3AI score0.01364EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2019/03/30 3:29 p.m.23 views

CVE-2019-10654

The lzo1xdecompress function in liblzo2.so.2 in LZO 2.10, as used in Long Range Zip aka lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive, a different vulnerability than CVE-2017-8845...

5.5CVSS6.1AI score0.01184EPSS
Exploits1References1
OSV
OSV
added 2019/03/30 3:29 p.m.22 views

CVE-2019-10654

The lzo1xdecompress function in liblzo2.so.2 in LZO 2.10, as used in Long Range Zip aka lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive, a different vulnerability than CVE-2017-8845...

5.5CVSS7AI score
Exploits0References1
OSV
OSV
added 2017/05/08 2:29 p.m.16 views

CVE-2017-8845

The lzo1xdecompress function in lzo1xd.ch in LZO 2.08, as used in lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive...

5.5CVSS6.6AI score
Exploits0References3
CVE
CVE
added 2017/05/08 2:0 p.m.66 views

CVE-2017-8845

CVE-2017-8845 affects lrzip (lrzip 0.631) via the lzo1x_d.ch code path in LZO 2.08, where lzo1x_decompress can trigger an invalid memory read and crash when processing a crafted archive. Connected docs confirm the vulnerability is remote-executable in a 0.631 deployment and ties to the same lzo1x...

5.5CVSS5.3AI score0.01364EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder