Download
| Alert*
oval:org.secpod.oval:def:2103353
Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service (out-of-bounds write) or potentially execute arbitrary code via a crafted ZIP archive. oval:org.secpod.oval:def:89002098 This update for p7zip fixes the following issues: Security issues fixed: - CVE-2016-1372: Fixed multiple vulnerabilities when processing crafted 7z files - CVE-2017-17969: Fixed a heap-based buffer overflow in a shrink decoder - CVE-2018-5996: Fixed memory corruption in RAR decompression. The comp ... oval:org.secpod.oval:def:70165 p7zip: 7z file archiver with high compression ratio p7zip could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:114006 p7zip is a port of 7za.exe for Unix. 7-Zip is a file archiver with a very high compression ratio oval:org.secpod.oval:def:114011 p7zip is a port of 7za.exe for Unix. 7-Zip is a file archiver with a very high compression ratio oval:org.secpod.oval:def:45297 The host is installed with 7 zip before 18.0 and is prone to a heap based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted ZIP archive. Successful exploitation could allow remote attackers to crash the service. oval:org.secpod.oval:def:603258 "landave" discovered a heap-based buffer overflow vulnerability in the NCompress::NShrink::CDecoder::CodeReal method in p7zip, a 7zr file archiver with high compression ratio. A remote attacker can take advantage of this flaw to cause a denial-of-service or, potentially the execution of arbitrary co ... oval:org.secpod.oval:def:113993 p7zip is a port of 7za.exe for Unix. 7-Zip is a file archiver with a very high compression ratio oval:org.secpod.oval:def:53242 "landave" discovered a heap-based buffer overflow vulnerability in the NCompress::NShrink::CDecoder::CodeReal method in p7zip, a 7zr file archiver with high compression ratio. A remote attacker can take advantage of this flaw to cause a denial-of-service or, potentially the execution of arbitrary co ... oval:org.secpod.oval:def:113980 p7zip is a port of 7za.exe for Unix. 7-Zip is a file archiver with a very high compression ratio oval:org.secpod.oval:def:704835 p7zip: 7z file archiver with high compression ratio p7zip could be made to crash or run programs as your login if it opened a specially crafted file. |