4 matches found
CVE-2012-1162
Heap-based buffer overflow in the zipreadcdir function in zipopen.c in libzip 0.10 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a zip archive with the number of directories set to 0, related to an "incorrect loop construct."...
CVE-2012-1163
Summary : CVE-2012-1163 is a vulnerability in libzip’s central directory handling. An integer overflow in the function _zip_readcdir (zip_open.c) allows a remote attacker to trigger memory safety violations, leading to possible arbitrary code execution and an information leak. The issue is associ...
CVE-2012-1163
Integer overflow in the zipreadcdir function in zipopen.c in libzip 0.10 allows remote attackers to execute arbitrary code via the size and offset values for the central directory in a zip archive, which triggers "improper restrictions of operations within the bounds of a memory buffer" and an...
CVE-2012-1162
Heap-based buffer overflow in the zipreadcdir function in zipopen.c in libzip 0.10 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a zip archive with the number of directories set to 0, related to an "incorrect loop construct."...