Lucene search
K

173 matches found

OSV
OSV
added 2015/11/06 6:59 p.m.8 views

CVE-2015-7697

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...

5AI score
Exploits0References9
OSV
OSV
added 2015/11/06 6:59 p.m.5 views

AZL-6939 CVE-2015-7697 affecting package unzip for versions less than 6.0-19

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...

4.3CVSS6.7AI score0.06073EPSS
Exploits0References1
OSV
OSV
added 2015/11/06 6:59 p.m.9 views

CVE-2015-7696

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly execute arbitrary code via a crafted password-protected ZIP archive, possibly related to an Extra-Field size value...

6.3AI score
Exploits0References9
Cvelist
Cvelist
added 2015/11/06 6:0 p.m.25 views

CVE-2015-7697

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...

5.3AI score0.06073EPSS
Exploits0References9
AlpineLinux
AlpineLinux
added 2015/11/06 6:0 p.m.29 views

CVE-2015-7697

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...

4.3CVSS5.5AI score0.06073EPSS
Exploits0
Debian CVE
Debian CVE
added 2015/11/06 6:0 p.m.26 views

CVE-2015-7696

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly execute arbitrary code via a crafted password-protected ZIP archive, possibly related to an Extra-Field size value...

6.8CVSS7.1AI score0.07184EPSS
Exploits0
CNVD
CNVD
added 2015/11/01 12:0 a.m.1 views

Info-ZIP UnZip Denial of Service Vulnerability

Info-ZIP UnZip is a set of Unix-based tools for decompressing the ".zip" file format. A security vulnerability in Info-ZIP UnZip allows an attacker to construct special files that can be parsed by an application, crashing the application or executing arbitrary code...

4.3CVSS6.2AI score0.06073EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2015/10/12 12:0 a.m.25 views

CVE-2015-7696

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly execute arbitrary code via a crafted password-protected ZIP archive, possibly related to an Extra-Field size value...

6.8CVSS7AI score0.07184EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2015/10/12 12:0 a.m.23 views

CVE-2015-7697

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...

4.3CVSS6.8AI score0.06073EPSS
Exploits0References3
Prion
Prion
added 2015/02/23 5:59 p.m.19 views

Buffer overflow

Buffer overflow in the charsettointern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8...

7.5CVSS8.2AI score0.04898EPSS
Exploits2References4Affected Software2
NVD
NVD
added 2015/02/23 5:59 p.m.22 views

CVE-2015-1315

Buffer overflow in the charsettointern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8...

7.5CVSS7.6AI score0.04898EPSS
Exploits2References4
Cvelist
Cvelist
added 2015/02/23 5:0 p.m.31 views

CVE-2015-1315

Buffer overflow in the charsettointern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8...

9.4AI score0.04898EPSS
Exploits2References4
Debian CVE
Debian CVE
added 2015/02/23 5:0 p.m.38 views

CVE-2015-1315

Buffer overflow in the charsettointern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8...

7.5CVSS9.3AI score0.04898EPSS
Exploits2
CNVD
CNVD
added 2015/01/06 12:0 a.m.4 views

Info-ZIP UnZip Out-of-Bounds Write Heap Buffer Overflow Vulnerability

unzip is a tool for decompressing the .zip file format under Unix. Info-ZIP The UnZip testcompreb function is vulnerable to an out-of-bounds write heap buffer overflow that allows attackers to construct malicious files that can be tricked into parsing by the user, crashing the application...

7.8CVSS7.6AI score0.07448EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/04 12:0 a.m.1 views

Info-ZIP UnZip Out-of-Bounds Denial of Service Vulnerability

unzip is a tool for decompressing the .zip file format under Unix. Info-ZIP UnZi has a denial of service vulnerability that allows attackers to crash an application, resulting in a denial of service...

5CVSS6.8AI score0.11562EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2014/12/28 12:0 a.m.35 views

CVE-2014-8140

Heap-based buffer overflow in the testcompreb function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command...

7.8CVSS7.4AI score0.07448EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2014/12/28 12:0 a.m.2 views

PT-2014-8430 · Info Zip +5 · Unzip +5

Name of the Vulnerable Software and Affected Versions: Info-ZIP UnZip versions 6.0 and earlier Description: A heap-based buffer overflow in the test compr eb function allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command. This iss...

7.8CVSS7.7AI score0.30469EPSS
Exploits3References66
UbuntuCve
UbuntuCve
added 2014/12/28 12:0 a.m.36 views

CVE-2014-8139

Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command...

7.8CVSS7.4AI score0.07448EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2014/12/28 12:0 a.m.5 views

PT-2014-8429 · Info Zip +5 · Info-Zip Unzip +5

Name of the Vulnerable Software and Affected Versions: Info-ZIP UnZip versions 6.0 and earlier Description: A heap-based buffer overflow issue exists in the CRC32 verification of Info-ZIP UnZip, allowing remote attackers to execute arbitrary code via a crafted zip file. This can be achieved by...

7.8CVSS7.5AI score0.30469EPSS
Exploits3References83
Positive Technologies
Positive Technologies
added 2014/12/28 12:0 a.m.1 views

PT-2014-8431 · Info Zip +5 · Unzip +5

Name of the Vulnerable Software and Affected Versions: Info-ZIP UnZip versions 6.0 and earlier Description: The issue is related to a heap-based buffer overflow in the getZip64Data function, allowing remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to t...

7.8CVSS7.6AI score0.30469EPSS
Exploits3References66
Rows per page
Query Builder