Info-ZIP UnZip inflate_dynamic()函数堆破坏漏洞

BUGTRAQ ID: 28288 CVECAN ID: CVE-2008-0888 unzip是在Unix下对.zip文件格式进行解压的工具。 unzip的实现上存在漏洞，攻击者可能利用此漏洞通过诱使用户处理恶意文档提升权限。...

Design/Logic Flaw

The NEEDBITS macro in the inflatedynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data...

CVE-2008-0888

The NEEDBITS macro in the inflatedynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data...

CVE-2008-0888

CVE-2008-0888 affects unzip. The NEEDBITS macro in inflate_dynamic (inflate.c) can be triggered with invalid buffers, leading to remote DoS (crash) and potentially arbitrary code execution via freeing uninitialized or previously-freed data. Connected advisories confirm unzip updates/patches exist...

CVE-2008-0888

The NEEDBITS macro in the inflatedynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data...

CVE-2008-0888

The NEEDBITS macro in the inflatedynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data...