Computer Security
[EN] securityvulns.ru no-pyccku


unzip security vulneravilities
Published:01.11.2015
Source:
SecurityVulns ID:14752
Type:library
Threat Level:
5/10
Description:DoS, code execution.
Affected:UNZIP : unzip 6.0
CVE:CVE-2015-7697 (Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service (infinite loop) via empty bzip2 data in a ZIP archive.)
 CVE-2015-7696 (Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly execute arbitrary code via a crafted password-protected ZIP archive, possibly related to an Extra-Field size value.)
Original documentdocumentUBUNTU, [USN-2788-1] unzip vulnerabilities (01.11.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod