Lucene search
K

3153 matches found

securityvulns
securityvulns
added 2007/07/13 12:0 a.m.54 views

FreeBSD Security Advisory FreeBSD-SA-07:05.libarchive

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-07:05.libarchive Security Advisory The FreeBSD Project Topic: Errors handling corrupt tar files in libarchive3 Category: core Module: libarchive Announced:...

9.3CVSS9.7AI score0.07432EPSS
Exploits0
securityvulns
securityvulns
added 2007/07/13 12:0 a.m.45 views

libarchive multiple security vulnerabilities

Memory corruption, buffer overflow, NULL pointer dereference...

9.3CVSS3.3AI score0.07432EPSS
Exploits0References1Affected Software1
FreeBSD Advisory
FreeBSD Advisory
added 2007/07/12 12:0 a.m.19 views

FreeBSD-SA-07:05.libarchive

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-07:05.libarchive Security Advisory The FreeBSD Project Topic: Errors handling corrupt tar files in libarchive3 Category: core Module: libarchive Announced:...

9.3CVSS7.5AI score0.07432EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/02/27 12:0 a.m.30 views

FreeBSD : libarchive -- Infinite loop in corrupt archives handling in libarchive (792bc222-c5d7-11db-9f82-000e0c2e438a)

If the end of an archive is reached while attempting to 'skip' past a region of an archive, libarchive will enter an infinite loop wherein it repeatedly attempts and fails to read further data. Impact : An attacker able to cause a system to extract via 'tar -x' or another application which uses...

5CVSS6.4AI score0.01588EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2006/12/06 12:0 a.m.41 views

gtar -- name mangling symlink vulnerability

Problem Description: Symlinks created using the "GNUTYPENAMES" tar extension can be absolute due to lack of proper sanity checks. Impact: If an attacker can get a user to extract a specially crafted tar archive the attacker can overwrite arbitrary files with the permissions of the user running...

4CVSS7.4AI score0.11084EPSS
Exploits1
NVD
NVD
added 2006/11/09 12:7 a.m.18 views

CVE-2006-5680

The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before 2006-11-08 allows context-dependent attackers to cause a denial of service CPU consumption via a malformed archive that causes libarchive to skip a region past the actual end of the archive, which triggers an infinite loop tha...

5CVSS6.2AI score0.01588EPSS
Exploits1References6
OSV
OSV
added 2006/11/09 12:7 a.m.6 views

CVE-2006-5680

The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before 2006-11-08 allows context-dependent attackers to cause a denial of service CPU consumption via a malformed archive that causes libarchive to skip a region past the actual end of the archive, which triggers an infinite loop tha...

6.5AI score
Exploits0References7
OSV
OSV
added 2006/11/09 12:7 a.m.6 views

DEBIAN-CVE-2006-5680

The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before 2006-11-08 allows context-dependent attackers to cause a denial of service CPU consumption via a malformed archive that causes libarchive to skip a region past the actual end of the archive, which triggers an infinite loop tha...

5CVSS6.7AI score0.01588EPSS
Exploits1References1
securityvulns
securityvulns
added 2006/11/09 12:0 a.m.48 views

libarchive library DoS

End of archive during region skipping causes infinite loop...

2.1AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2006/11/09 12:0 a.m.46 views

FreeBSD Security Advisory FreeBSD-SA-06:24.libarchive

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:24.libarchive Security Advisory The FreeBSD Project Topic: Infinite loop in corrupt archives handling in libarchive3 Category: core Module: libarchive Announce...

5CVSS8.6AI score0.01588EPSS
Exploits1
Debian CVE
Debian CVE
added 2006/11/09 12:0 a.m.23 views

CVE-2006-5680

The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before 2006-11-08 allows context-dependent attackers to cause a denial of service CPU consumption via a malformed archive that causes libarchive to skip a region past the actual end of the archive, which triggers an infinite loop tha...

5CVSS6AI score0.01588EPSS
Exploits1
FreeBSD Advisory
FreeBSD Advisory
added 2006/11/08 12:0 a.m.10 views

FreeBSD-SA-06:24.libarchive

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:24.libarchive Security Advisory The FreeBSD Project Topic: Infinite loop in corrupt archives handling in libarchive3 Category: core Module: libarchive...

5CVSS6.5AI score0.01588EPSS
Exploits1
FreeBSD
FreeBSD
added 2006/11/08 12:0 a.m.26 views

libarchive -- Infinite loop in corrupt archives handling in libarchive

Problem Description: If the end of an archive is reached while attempting to "skip" past a region of an archive, libarchive will enter an infinite loop wherein it repeatedly attempts and fails to read further data. Impact: An attacker able to cause a system to extract via "tar -x" or another...

5CVSS6.3AI score0.01588EPSS
Exploits1
Rows per page
Query Builder