Vulnerabilities > CVE-2018-5196 - Out-of-bounds Write vulnerability in Estsoft Alzip 10.76.0.0/8.5.1

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL

Summary

Alzip 10.76.0.0 and earlier is vulnerable to a stack overflow caused by improper bounds checking. By persuading a victim to open a specially-crafted LZH archive file, a attacker could execute arbitrary code execution.

Vulnerable Configurations

Part Description Count
Application
Estsoft
2

Common Weakness Enumeration (CWE)