SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2015-7697

Date: (C)2015-12-15 (M)2023-12-22

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service (infinite loop) via empty bzip2 data in a ZIP archive.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.3
Exploit Score: 8.6
Impact Score: 2.9

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL

Reference:

SECTRACK-1034027

http://www.openwall.com/lists/oss-security/2015/09/07/4

http://www.openwall.com/lists/oss-security/2015/09/15/6

http://www.openwall.com/lists/oss-security/2015/10/11/5

http://sourceforge.net/p/infozip/patches/23/

cpe:/o:debian:debian_linux:7.0
cpe:/o:debian:debian_linux:8.0
cpe:/o:canonical:ubuntu_linux:15.10
cpe:/o:canonical:ubuntu_linux:15.04
...

oval:org.secpod.oval:def:2101171
oval:org.secpod.oval:def:89043924
oval:org.secpod.oval:def:52614
oval:org.secpod.oval:def:602260
...

© SecPod Technologies