CVE-2007-2536

Опубликовано: 09 мая 2007

Источник: nvd

CVSS2: 7.8

EPSS Низкий

Описание

PicoZip allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

Ссылки

http://osvdb.org/41751
http://securityreason.com/securityalert/2680
http://www.securityfocus.com/archive/1/467646/100/0/threaded
http://www.securityfocus.com/bid/23823
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/34080
http://osvdb.org/41751
http://securityreason.com/securityalert/2680
http://www.securityfocus.com/archive/1/467646/100/0/threaded
http://www.securityfocus.com/bid/23823
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/34080

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:picozip:picozip:4.01:*:*:*:*:*:*:*

cpe:2.3:a:picozip:picozip:4.02:*:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05168

Низкий

7.8 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-g4p9-3mw4-76j8

github

почти 4 года назад