Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zlib vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2018-14340
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer over-read.
Wireshark Wireshark
Debian Debian Linux 8.0
294
VMScore
CVE-2008-3933
Wireshark (formerly Ethereal) 0.10.14 up to and including 1.0.2 allows malicious users to cause a denial of service (crash) via a packet with crafted zlib-compressed data that triggers an invalid read in the tvb_uncompress function.
Wireshark Wireshark 0.10.14
Wireshark Wireshark 0.10.2
Wireshark Wireshark 0.10.9
Wireshark Wireshark 0.99.0
Wireshark Wireshark 0.10.3
Wireshark Wireshark 0.10.4
Wireshark Wireshark 0.99.1
Wireshark Wireshark 0.99.2
Wireshark Wireshark 0.99.8
Wireshark Wireshark 1.0.0
Wireshark Wireshark 0.10.5
Wireshark Wireshark 0.10.6
Wireshark Wireshark 0.99.3
Wireshark Wireshark 0.99.4
Wireshark Wireshark 1.0.1
Wireshark Wireshark 1.0.2
Wireshark Wireshark 0.99.6a
Wireshark Wireshark 0.99.7
Wireshark Wireshark 0.10.7
Wireshark Wireshark 0.10.8
Wireshark Wireshark 0.99.5
Wireshark Wireshark 0.99.6
829
VMScore
CVE-2008-1887
Python 2.5.2 and previous versions allows context-dependent malicious users to execute arbitrary code via multiple vectors that cause a negative size value to be provided to the PyString_FromStringAndSize function, which allocates less memory than expected when assert() is disabl...
Python Python
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Debian Debian Linux 4.0
605
VMScore
CVE-2008-1679
Multiple integer overflows in imageop.c in Python prior to 2.5.3 allow context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via crafted images that trigger heap-based buffer overflows. NOTE: this issue is due to an incomplete ...
Python Python
383
VMScore
CVE-2007-2231
Directory traversal vulnerability in index/mbox/mbox-storage.c in Dovecot prior to 1.0.rc29, when using the zlib plugin, allows remote malicious users to read arbitrary gzipped (.gz) mailboxes (mbox files) via a .. (dot dot) sequence in the mailbox name.
Dovecot Dovecot 1.0.beta4
Dovecot Dovecot 1.0.beta5
Dovecot Dovecot 1.0.rc11
Dovecot Dovecot 1.0.rc12
Dovecot Dovecot 1.0.rc2
Dovecot Dovecot 1.0.rc20
Dovecot Dovecot 1.0.rc27
Dovecot Dovecot 1.0.rc28
Dovecot Dovecot 1.0.rc9
Dovecot Dovecot 1.0.beta2
Dovecot Dovecot 1.0.beta3
Dovecot Dovecot 1.0.rc1
Dovecot Dovecot 1.0.rc10
Dovecot Dovecot 1.0.rc18
Dovecot Dovecot 1.0.rc19
Dovecot Dovecot 1.0.rc25
Dovecot Dovecot 1.0.rc26
Dovecot Dovecot 1.0.rc7
Dovecot Dovecot 1.0.rc8
Dovecot Dovecot 1.0.beta6
Dovecot Dovecot 1.0.beta7
Dovecot Dovecot 1.0.rc13
NA
CVE-2022-2122
DOS / potential heap overwrite in qtdemux using zlib decompression. Integer overflow in qtdemux element in qtdemux_inflate function which causes a segfault, or could cause a heap overwrite, depending on libc and OS. Depending on the libc used, and the underlying OS capabilities, ...
Gstreamer Project Gstreamer
Debian Debian Linux 10.0
Debian Debian Linux 11.0
445
VMScore
CVE-2005-2344
The BlackBerry Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.0 to version 4.0 Service Pack 2 allows malicious users to cause a denial of service via a malformed Portable Network Graphics (PNG) file that triggers a heap-based buffer overflow.
Rim Blackberry Enterprise Server 4.0 Sp1
Rim Blackberry Enterprise Server 4.0 Sp2
Rim Blackberry Enterprise Server 4.0
NA
CVE-2022-29154
An issue exists in rsync prior to 3.2.5 that allows malicious remote servers to write arbitrary files inside the directories of connecting peers. The server chooses which files/directories are sent to the client. However, the rsync client performs insufficient validation of file ...
Samba Rsync
Fedoraproject Fedora 35
Fedoraproject Fedora 36
2 Github repositories
945
VMScore
CVE-2009-4324
Use-after-free vulnerability in the Doc.media.newPlayer method in Multimedia.api in Adobe Reader and Acrobat 9.x prior to 9.3, and 8.x prior to 8.2 on Windows and Mac OS X, allows remote malicious users to execute arbitrary code via a crafted PDF file using ZLib compressed stream...
Adobe Acrobat Reader 3.0
Adobe Acrobat Reader 4.0
Adobe Acrobat Reader 5.0.11
Adobe Acrobat Reader 5.0.5
Adobe Acrobat 6.0.4
Adobe Acrobat 6.0.5
Adobe Acrobat 7.0.6
Adobe Acrobat 7.0.7
Adobe Acrobat Reader 5.1
Adobe Acrobat Reader 6.0
Adobe Acrobat Reader 7.0.2
Adobe Acrobat Reader 7.0.3
Adobe Acrobat Reader 8.0
Adobe Acrobat Reader 8.1
Adobe Acrobat Reader
Adobe Acrobat Reader 4.0.5c
Adobe Acrobat Reader 4.5
Adobe Acrobat Reader 5.0.9
Adobe Acrobat 6.0
Adobe Acrobat 7.0.2
Adobe Acrobat 7.0.3
Adobe Acrobat 8.0
3 EDB exploits
3 Articles
383
VMScore
CVE-2008-3137
The GSM SMS dissector in Wireshark (formerly Ethereal) 0.99.2 up to and including 1.0.0 allows remote malicious users to cause a denial of service (application crash) via unknown vectors.
Wireshark Wireshark 0.99.7
Wireshark Wireshark 0.99.8
Wireshark Wireshark 0.99.3
Wireshark Wireshark 0.99.4
Wireshark Wireshark 0.99.5
Wireshark Wireshark 0.99.6
Wireshark Wireshark 0.9.5
Wireshark Wireshark 0.99.2
Wireshark Wireshark 1.0
Wireshark Wireshark 1.0.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »