Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zziplib zziplib vulnerabilities and exploits
(subscribe to this query)
384
VMScore
CVE-2017-5976
Heap-based buffer overflow in the zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote malicious users to cause a denial of service (crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.56
Zziplib Project Zziplib 0.13.57
Zziplib Project Zziplib 0.13.58
Zziplib Project Zziplib 0.13.59
Zziplib Project Zziplib 0.13.60
Zziplib Project Zziplib 0.13.61
Zziplib Project Zziplib 0.13.62
Debian Debian Linux 8.0
Debian Debian Linux 9.0
383
VMScore
CVE-2017-5974
Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote malicious users to cause a denial of service (crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.56
Zziplib Project Zziplib 0.13.57
Zziplib Project Zziplib 0.13.58
Zziplib Project Zziplib 0.13.59
Zziplib Project Zziplib 0.13.60
Zziplib Project Zziplib 0.13.61
Zziplib Project Zziplib 0.13.62
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 Github repository
384
VMScore
CVE-2017-5975
Heap-based buffer overflow in the __zzip_get64 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote malicious users to cause a denial of service (crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.56
Zziplib Project Zziplib 0.13.57
Zziplib Project Zziplib 0.13.58
Zziplib Project Zziplib 0.13.59
Zziplib Project Zziplib 0.13.60
Zziplib Project Zziplib 0.13.61
Zziplib Project Zziplib 0.13.62
Debian Debian Linux 8.0
Debian Debian Linux 9.0
828
VMScore
CVE-2007-1614
Stack-based buffer overflow in the zzip_open_shared_io function in zzip/file.c in ZZIPlib Library prior to 0.13.49 allows user-assisted remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a long filename.
Zziplib Zziplib
383
VMScore
CVE-2018-16548
An issue exists in ZZIPlib up to and including 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.
Zziplib Project Zziplib
384
VMScore
CVE-2017-5978
The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote malicious users to cause a denial of service (out-of-bounds read and crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.62
383
VMScore
CVE-2017-5979
The prescan_entry function in fseeko.c in zziplib 0.13.62 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.62
384
VMScore
CVE-2017-5980
The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.62
383
VMScore
CVE-2018-6542
In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trailer seek value) caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c.
Zziplib Project Zziplib 0.13.67
516
VMScore
CVE-2018-17828
Directory traversal vulnerability in ZZIPlib 0.13.69 allows malicious users to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.
Zziplib Project Zziplib 0.13.69
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »