Описание
Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 6.0-13ubuntu1 |
| esm-infra-legacy/trusty | released | 6.0-9ubuntu1.1 |
| lucid | released | 6.0-1ubuntu0.1 |
| precise | released | 6.0-4ubuntu2.1 |
| trusty | released | 6.0-9ubuntu1.1 |
| trusty/esm | released | 6.0-9ubuntu1.1 |
| upstream | released | 6.0-13 |
| utopic | released | 6.0-12ubuntu1.1 |
Показывать по
EPSS
6.8 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command.
Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command.
Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip ...
Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command.
EPSS
6.8 Medium
CVSS2
7.8 High
CVSS3