Lucene search
+L

258 matches found

Tenable Nessus
Tenable Nessus
added 2005/07/13 12:0 a.m.21 views

FreeBSD : zip -- long path buffer overflow (40549bbf-43b5-11d9-a9e7-0001020eed82)

A HexView security advisory reports : When zip performs recursive folder compression, it does not check for the length of resulting path. If the path is too long, a buffer overflow occurs leading to stack corruption and segmentation fault. It is possible to exploit this vulnerability by embedding...

10CVSS5.6AI score0.09246EPSS
Exploits0References3
NVD
NVD
added 2005/03/01 5:0 a.m.8 views

CVE-2004-1010

Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname...

10CVSS7.8AI score0.09246EPSS
Exploits0References16
UbuntuCve
UbuntuCve
added 2005/03/01 5:0 a.m.16 views

CVE-2004-1010

Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname...

10CVSS6AI score0.09246EPSS
Exploits0References2
OSV
OSV
added 2005/03/01 5:0 a.m.8 views

DEBIAN-CVE-2004-1010

Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname...

10CVSS8.3AI score0.09246EPSS
Exploits0References1
OSV
OSV
added 2005/03/01 5:0 a.m.7 views

CVE-2004-1010

Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname...

7.7AI score
Exploits0References17
RedHat Linux
RedHat Linux
added 2004/12/16 8:49 p.m.6 views

security flaw

Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname...

10CVSS6.3AI score0.09246EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2004/11/09 5:0 a.m.26 views

CVE-2004-1010

Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname...

10CVSS8AI score0.09246EPSS
Exploits0
Cvelist
Cvelist
added 2004/11/09 5:0 a.m.21 views

CVE-2004-1010

Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname...

7.6AI score0.09246EPSS
Exploits0References16
CVE
CVE
added 2004/11/09 5:0 a.m.59 views

CVE-2004-1010

CVE-2004-1010 maps to a buffer overflow in Info-Zip zip (v2.3 and possibly earlier) when recursively creating archives with very long pathnames, enabling remote code execution via a crafted ZIP. Connected advisories (Ubuntu USN-18-1, Debian DSA-624-1, Gentoo GLSA 200411-16, FreeBSD/OpenVAS entrie...

10CVSS7.6AI score0.09246EPSS
Exploits0References16Affected Software1
securityvulns
securityvulns
added 2004/11/04 12:0 a.m.21 views

Info-Zip buffer overflow

Buffer overflow on oversized path file comperssing...

4.5AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2004/11/04 12:0 a.m.32 views

[Full-Disclosure] [HV-MED] Zip/Linux long path buffer overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Zip/Linux long path buffer overflow Classification: =============== Level: low-MED-high-crit ID: HEXVIEW200411031 URL: http://www.hexview.com/docs/20041103-1.txt Overview: ========= Zip console application by Info-Zip http://www.info-zip.org is an...

7.4AI score
Exploits0
FreeBSD
FreeBSD
added 2004/10/03 12:0 a.m.31 views

zip -- long path buffer overflow

A HexView security advisory reports: When zip performs recursive folder compression, it does not check for the length of resulting path. If the path is too long, a buffer overflow occurs leading to stack corruption and segmentation fault. It is possible to exploit this vulnerability by embedding ...

10CVSS3.2AI score0.09246EPSS
Exploits0References1
Cvelist
Cvelist
added 2002/05/03 4:0 a.m.33 views

CVE-2001-1268

Directory traversal vulnerability in Info-ZIP UnZip 5.42 and earlier allows attackers to overwrite arbitrary files during archive extraction via a .. dot dot in an extracted filename...

9.3AI score0.0067EPSS
Exploits1References4
Cvelist
Cvelist
added 2002/05/03 4:0 a.m.29 views

CVE-2001-1269

Info-ZIP UnZip 5.42 and earlier allows attackers to overwrite arbitrary files during archive extraction via filenames in the archive that begin with the '/' slash character...

6.6AI score0.00503EPSS
Exploits1References4
CVE
CVE
added 2002/05/03 4:0 a.m.71 views

CVE-2001-1268

CVE-2001-1268 is a directory traversal vulnerability in Info-ZIP UnZip 5.42 and earlier that allows overwriting arbitrary files during archive extraction via a .. in the extracted filename. Connected sources confirm the affected product is UnZip up to version 5.42 and earlier, with the basic issu...

2.1CVSS6.5AI score0.0067EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2002/05/03 4:0 a.m.57 views

CVE-2001-1269

CVE-2001-1269 affects Info-ZIP UnZip 5.42 and earlier. The vulnerability allows an attacker to overwrite arbitrary files during archive extraction by using filenames that begin with the slash character (/) in the ZIP archive. The issue is rooted in how the extractor handles archive filenames, ena...

2.1CVSS6.7AI score0.00503EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2001/07/12 4:0 a.m.25 views

CVE-2001-1268

Directory traversal vulnerability in Info-ZIP UnZip 5.42 and earlier allows attackers to overwrite arbitrary files during archive extraction via a .. dot dot in an extracted filename...

2.1CVSS9.3AI score0.0067EPSS
Exploits1References4
security_vulns
security_vulns
added 2001/02/07 12:0 a.m.104 views

Multiple archivers directory traversal and path globbing

Topic: Directory traversal and path globbing in multiple archivers Author: 3APA3A Affected Software: GNU tar = 1.13.19, Info-Zip UnZip = 5.42, RARSoft rar = 2.02, PKWare pkzipc = 4.00 Not affected: rar 2.80, WinZIP 8.0 Risk: low/average Released: July, 2, 2001 SECURITY.NNOV advisories:...

6.9AI score
Exploits0
Rows per page
Query Builder