Vulnerabilities > CVE-2018-1000032 - Out-of-bounds Write vulnerability in Info-Zip Unzip 6.10C22

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL

Summary

A heap-based buffer overflow exists in Info-Zip UnZip version 6.10c22 that allows an attacker to perform a denial of service or to possibly achieve code execution.

Vulnerable Configurations

Part Description Count
Application
Info-Zip
1

Common Weakness Enumeration (CWE)

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/146292/SA-20180207-0.txt
idPACKETSTORM:146292
last seen2018-02-08
published2018-02-07
reporterRene Freingruber
sourcehttps://packetstormsecurity.com/files/146292/InfoZip-UnZip-6.00-6.1c22-Buffer-Overflow.html
titleInfoZip UnZip 6.00 / 6.1c22 Buffer Overflow