Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zziplib project zziplib vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2017-5974
Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote malicious users to cause a denial of service (crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.56
Zziplib Project Zziplib 0.13.57
Zziplib Project Zziplib 0.13.58
Zziplib Project Zziplib 0.13.59
Zziplib Project Zziplib 0.13.60
Zziplib Project Zziplib 0.13.61
Zziplib Project Zziplib 0.13.62
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 Github repository
384
VMScore
CVE-2017-5975
Heap-based buffer overflow in the __zzip_get64 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote malicious users to cause a denial of service (crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.56
Zziplib Project Zziplib 0.13.57
Zziplib Project Zziplib 0.13.58
Zziplib Project Zziplib 0.13.59
Zziplib Project Zziplib 0.13.60
Zziplib Project Zziplib 0.13.61
Zziplib Project Zziplib 0.13.62
Debian Debian Linux 8.0
Debian Debian Linux 9.0
384
VMScore
CVE-2017-5976
Heap-based buffer overflow in the zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote malicious users to cause a denial of service (crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.56
Zziplib Project Zziplib 0.13.57
Zziplib Project Zziplib 0.13.58
Zziplib Project Zziplib 0.13.59
Zziplib Project Zziplib 0.13.60
Zziplib Project Zziplib 0.13.61
Zziplib Project Zziplib 0.13.62
Debian Debian Linux 8.0
Debian Debian Linux 9.0
383
VMScore
CVE-2018-16548
An issue exists in ZZIPlib up to and including 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.
Zziplib Project Zziplib
516
VMScore
CVE-2018-17828
Directory traversal vulnerability in ZZIPlib 0.13.69 allows malicious users to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.
Zziplib Project Zziplib 0.13.69
384
VMScore
CVE-2017-5977
The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62 allows remote malicious users to cause a denial of service (invalid memory read and crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.62
384
VMScore
CVE-2017-5978
The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote malicious users to cause a denial of service (out-of-bounds read and crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.62
383
VMScore
CVE-2017-5979
The prescan_entry function in fseeko.c in zziplib 0.13.62 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.62
384
VMScore
CVE-2017-5980
The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.62
383
VMScore
CVE-2017-5981
seeko.c in zziplib 0.13.62 allows remote malicious users to cause a denial of service (assertion failure and crash) via a crafted ZIP file.
Zziplib Project Zziplib 0.13.62
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »