173 matches found
CVE-2015-7697
Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...
AZL-6939 CVE-2015-7697 affecting package unzip for versions less than 6.0-19
Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...
CVE-2015-7696
Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly execute arbitrary code via a crafted password-protected ZIP archive, possibly related to an Extra-Field size value...
CVE-2015-7697
Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...
CVE-2015-7697
Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...
CVE-2015-7696
Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly execute arbitrary code via a crafted password-protected ZIP archive, possibly related to an Extra-Field size value...
Info-ZIP UnZip Denial of Service Vulnerability
Info-ZIP UnZip is a set of Unix-based tools for decompressing the ".zip" file format. A security vulnerability in Info-ZIP UnZip allows an attacker to construct special files that can be parsed by an application, crashing the application or executing arbitrary code...
CVE-2015-7696
Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly execute arbitrary code via a crafted password-protected ZIP archive, possibly related to an Extra-Field size value...
CVE-2015-7697
Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...
Buffer overflow
Buffer overflow in the charsettointern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8...
CVE-2015-1315
Buffer overflow in the charsettointern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8...
CVE-2015-1315
Buffer overflow in the charsettointern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8...
CVE-2015-1315
Buffer overflow in the charsettointern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8...
Info-ZIP UnZip Out-of-Bounds Write Heap Buffer Overflow Vulnerability
unzip is a tool for decompressing the .zip file format under Unix. Info-ZIP The UnZip testcompreb function is vulnerable to an out-of-bounds write heap buffer overflow that allows attackers to construct malicious files that can be tricked into parsing by the user, crashing the application...
Info-ZIP UnZip Out-of-Bounds Denial of Service Vulnerability
unzip is a tool for decompressing the .zip file format under Unix. Info-ZIP UnZi has a denial of service vulnerability that allows attackers to crash an application, resulting in a denial of service...
CVE-2014-8140
Heap-based buffer overflow in the testcompreb function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command...
PT-2014-8430 · Info Zip +5 · Unzip +5
Name of the Vulnerable Software and Affected Versions: Info-ZIP UnZip versions 6.0 and earlier Description: A heap-based buffer overflow in the test compr eb function allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command. This iss...
CVE-2014-8139
Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command...
PT-2014-8429 · Info Zip +5 · Info-Zip Unzip +5
Name of the Vulnerable Software and Affected Versions: Info-ZIP UnZip versions 6.0 and earlier Description: A heap-based buffer overflow issue exists in the CRC32 verification of Info-ZIP UnZip, allowing remote attackers to execute arbitrary code via a crafted zip file. This can be achieved by...
PT-2014-8431 · Info Zip +5 · Unzip +5
Name of the Vulnerable Software and Affected Versions: Info-ZIP UnZip versions 6.0 and earlier Description: The issue is related to a heap-based buffer overflow in the getZip64Data function, allowing remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to t...