153 matches found
EUVD-2018-1794
Malware in sbrugna...
EUVD-2018-1795
Malware in sbrugna...
EUVD-2018-1793
Malware in sbrugna...
EUVD-2014-7982
Malware in sbrugna...
EUVD-2014-7983
Malware in sbrugna...
EUVD-2001-1249
Malware in sbrugna...
EUVD-2019-4743
Malware in sbrugna...
EUVD-2014-9718
Malware in sbrugna...
EUVD-2001-1250
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2014-8140
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in the testcompreb function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip fil...
Linux Distros Unpatched Vulnerability : CVE-2014-8139
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file ...
Linux Distros Unpatched Vulnerability : CVE-2015-7696
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly execute arbitrary code via...
CBL Mariner 2.0 Security Update: unzip (CVE-2015-7696)
The version of unzip installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2015-7696 advisory. - Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service heap-based buffer over-read and...
RHEL 5 : unzip (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - unzip: Heap-based buffer overflow in fileio.c:UzpPassword function allows code execution CVE-2018-1000035...
Oracle Linux 8 : unzip (ELSA-2020-1787)
The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-1787 advisory. - Related: CVE-2019-13232 - Fix CVE-2019-13232 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...
Buffer overflow in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string
Buffer overflow in the charsettointern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8. Notes: Brocade SANnav contains the affected open source routines, but these...
K80311892: InfoZIP vulnerability CVE-2019-13232
Security Advisory Description Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a "better zip bomb" issue. CVE-2019-13232 Impact Local users with administrative access to the BIG-IP Advanced Shell bash may be able...
SUSE CVE-2014-8140
Heap-based buffer overflow in the testcompreb function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command...
SUSE CVE-2018-1000032
A heap-based buffer overflow exists in Info-Zip UnZip version 6.10c22 that allows an attacker to perform a denial of service or to possibly achieve code execution...
SUSE CVE-2018-1000031
A heap-based buffer overflow exists in Info-Zip UnZip version 6.10c22 that allows an attacker to perform a denial of service or to possibly achieve code execution...