85 matches found
EUVD-2017-9112
Malware in sbrugna...
EUVD-2006-1172
Malware in sbrugna...
EUVD-2005-2991
Malware in sbrugna...
ROS-20250804-03
Vulnerability of NCompress::NRar5::CDecoder method of RAR5 decoder of 7-Zip archiver is related to possibility of heap-based buffer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service Vulnerability of NArchive::NCom::CHandler::GetStream metho...
RHSA-2006:0663 Red Hat Security Advisory: ncompress security update
Bulletin has no description...
OPENSUSE-SU-2024:10385-1 ncompress-4.2.4.4-1.1 on GA media
These are all security issues fixed in the ncompress-4.2.4.4-1.1 package on the GA media of openSUSE Tumbleweed...
SUSE CVE-2005-2991
ncompress 4.2.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files using 1 zdiff or 2 zcmp, a different vulnerability than CVE-2004-0970...
SUSE CVE-2006-1168
The decompress function in compress42.c in 1 ncompress 4.2.4 and 2 liblzw allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code, via crafted data that leads to a buffer underflow...
Mageia: Security Advisory (MGASA-2018-0123)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 Security Update : p7zip (SUSE-SU-2021:1491-1)
This update for p7zip fixes the following issues : CVE-2021-3465: Fixed a NULL pointer dereference in NCompress:CCopyCoder:Code bsc1184699 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...
Arbitrary Code Execution
ncompress is vulnerable to arbitrary code execution. A stack-based buffer overflow in the comprexx function allows remote attackers to execute arbitrary code via a long filename argument...
ncompress bug fix and enhancement update
An update is available for ncompress. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterpri...
ALBA-2020:4681 ncompress bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
Debian DSA-4104-1 : p7zip - security update
'landave' discovered a heap-based buffer overflow vulnerability in the NCompress::NShrink::CDecoder::CodeReal method in p7zip, a 7zr file archiver with high compression ratio. A remote attacker can take advantage of this flaw to cause a denial-of-service or, potentially the execution of arbitrary...
CVE-2018-5996
Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code, allows remote attackers to cause a denial of service segmentation fault or execute arbitrary code via a crafted RAR archive...
7-Zip and p7zip heap buffer overflow vulnerability
7-Zip is a free, open source compression/decompression software. p7zip is its version for Linux-based platforms. A heap buffer overflow vulnerability exists in the NCompress::NShrink::CDecoder::CodeReal method in versions prior to 7-Zip 18.00 and p7zip. A remote attacker can exploit this...
CVE-2017-17969
Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service out-of-bounds write or potentially execute arbitrary code via a crafted ZIP archive...
Heap overflow
Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service out-of-bounds write or potentially execute arbitrary code via a crafted ZIP archive...
CVE-2017-17969
Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service out-of-bounds write or potentially execute arbitrary code via a crafted ZIP archive...
CVE-2017-17969
CVE-2017-17969 affects p7zip (7‑zip port) via a heap-based buffer overflow in NCompress::NShrink::CDecoder::CodeReal, exploitable when processing a crafted ZIP archive. The Debian advisory confirms a remote attacker can cause denial of service or potentially execute arbitrary code with the user’s...