Vulnerabilities > CVE-2018-9058 - Infinite Loop vulnerability in Long Range ZIP Project Long Range ZIP 0.631

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL

Summary

In Long Range Zip (aka lrzip) 0.631, there is an infinite loop in the runzip_fd function of runzip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted lrz file.

Vulnerable Configurations

Part Description Count
Application
Long_Range_Zip_Project
1