Lucene search
K

31 matches found

Veracode
Veracode
added 2018/07/31 8:12 a.m.24 views

Denial Of Service (DoS)

libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass a rar file to the copyfromlzsswindow function in archivereadsupportformatrar.c file to cause an out-of-bounds read that can crash the application...

5.5CVSS6AI score0.023EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2018/07/17 6:21 a.m.30 views

Arbitrary File Overwrite

libarchive.so is vulnerable to arbitrary file overwrite attacks. The vulnerability exists as sandboxing restrictions can be evaded through hard links with data, causing file overwrites...

7.5CVSS8AI score0.04707EPSS
Exploits1References14Affected Software1
Veracode
Veracode
added 2018/07/16 10:7 a.m.23 views

Denial Of Service (DoS) Through Integer Overflow

libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass an archive file with a filename that when verified can cause an integer overflow, leading to a DoS or arbitrary code being executed...

8.6CVSS8.5AI score0.06251EPSS
Exploits0References12Affected Software1
Veracode
Veracode
added 2018/05/24 5:17 a.m.17 views

Denial Of Service (DoS)

libarchive.so is vulnerable to denial of service DoS attacks. A malicious user can pass an archive file to the lhareadfileheader1 function in archivereadsupportformatlha.c to cause an out-of-bounds read that can crash the application...

7.5CVSS7.1AI score0.04447EPSS
Exploits0References2Affected Software1
Veracode
Veracode
added 2018/04/18 7:9 a.m.37 views

Denial Of Service (DoS) Through Stack Buffer Overflow

libarchive.so is vulnerable to denial of service DoS through stack-based buffer overflow attacks. The vulnerability exists in safefprintf of tar/util.c when printing a filename can cause a buffer overflow when formatting a non-printable multi-byte character...

7.5CVSS7.8AI score0.05258EPSS
Exploits0References2Affected Software1
Veracode
Veracode
added 2018/04/12 4:58 p.m.25 views

Denial Of Service (DoS)

libarchive.so is vulnerable to denial of service DoS attacks. The application has a memory copying bug when appending certain strings, leading to a segmentation fault, crashing the application...

7.5CVSS7.2AI score0.03839EPSS
Exploits0References8Affected Software1
Veracode
Veracode
added 2018/04/10 8:29 a.m.26 views

Denial Of Service (DoS) Through Null Pointer Access

libarchive.so is susceptible to Denial of Service DoS through null pointer access. The vulnerability is possible when the header is a split file in multivolume RAR, it does not properly check the file name and flag for multivolume, allowing the attacker to parse malicious .rar files...

6.5CVSS6.7AI score0.03233EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2018/04/10 7:43 a.m.25 views

Undefined Behavior Through Integer Overflow

libarchive.so is vulnerable to undefined behavior through integer overflow. The vulnerability is possible due to not properly handling timet value of m, allowing the attacker to pass malicious .mtree file...

7.8CVSS7.5AI score0.02122EPSS
Exploits1References1Affected Software1
Veracode
Veracode
added 2018/04/10 7:28 a.m.28 views

Denial Of Service (DoS) Via Out-of-bounds Read

libarchive.so is vulnerable to Denial of Service DoS via out-of-bounds read. The vulnerability is possible because a malicious .mtree file can be passed to processaddentry function in archivereadsupportformatmtree.c, leading to out-of-bounds reads...

5.5CVSS6.5AI score0.0206EPSS
Exploits1References3Affected Software1
Veracode
Veracode
added 2018/04/06 7:47 a.m.21 views

Denial Of Service (DoS) Through Heap Buffer Overflow

libarchive.so is vulnerable to denial of service DoS through heap-based buffer overflow. The vulnerability occurs when libarchive.so reads the last character of an empty tar filename, resulting in a heap-based buffer overflow which cashes the application to crash...

5.5CVSS6.7AI score0.05379EPSS
Exploits0References12Affected Software1
Veracode
Veracode
added 2018/04/06 6:30 a.m.25 views

Denial Of Service (DoS)

libarchive.so is susceptible to denial of service DoS. The attacker can pass a malicious .mtree file to aestrtofflags function in archiveentry.c , leading to out-of-bounds reads...

7.5CVSS7.2AI score0.11992EPSS
Exploits0References13Affected Software2
Rows per page
Query Builder