Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
3.7
CVSSv2

CVE-2005-4667

Published: 31/12/2005 Updated: 19/10/2018
CVSS v2 Base Score: 3.7 | Impact Score: 6.4 | Exploitability Score: 1.9
VMScore: 375
Vector: AV:L/AC:H/Au:N/C:P/I:P/A:P
Subscribe to Info-zip

Vulnerability Summary

Buffer overflow in UnZip 5.50 and previous versions allows user-assisted malicious users to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long arguments when it is invoked from other programs.

Vulnerable Product Search on Vulmon Subscribe to Product

info-zip unzip 5.2

info-zip unzip 5.3

info-zip unzip 5.31

info-zip unzip 5.41

info-zip unzip 5.42

info-zip unzip 5.50

info-zip unzip 5.32

info-zip unzip 5.40

Vendor Advisories

Debian CVElist Bug Report Logs: unzip: Info-ZIP UnZip File Name Buffer Overflow Vulnerability
Debian Bug report logs - #349794 unzip: Info-ZIP UnZip File Name Buffer Overflow Vulnerability Package: unzip; Maintainer for unzip is Santiago Vila <sanvila@debianorg>; Source for unzip is src:unzip (PTS, buildd, popcon) Reported by: Stephen Gran <sgran@debianorg> Date: Wed, 25 Jan 2006 10:18:36 UTC Severity: gra ...
Ubuntu Security Notice: unzip vulnerability
A buffer overflow was discovered in the handling of file name arguments By tricking a user or automated system into processing a specially crafted, excessively long file name with unzip, an attacker could exploit this to execute arbitrary code with the user’s privileges ...
Debian Security Advisories: DSA-1012-1 unzip -- buffer overflow
A buffer overflow in the command line argument parsing has been discovered in unzip, the de-archiver for ZIP files, that could lead to the execution of arbitrary code For the old stable distribution (woody) this problem has been fixed in version 550-1woody6 For the stable distribution (sarge) this problem has been fixed in version 552-1sarge4 ...

Exploits

Exploit DB: Info-ZIP UnZip 5.x - File Name Buffer Overflow
source: wwwsecurityfocuscom/bid/15968/info Info-ZIP 'unzip' is susceptible to a filename buffer-overflow vulnerability The application fails to properly bounds-check user-supplied data before copying it into an insufficiently sized memory buffer This issue allows attackers to execute arbitrary machine code in the context of users runni ...

References

CWE-119http://www.securityfocus.com/bid/15968http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0930.htmlhttp://www.osvdb.org/22400http://www.trustix.org/errata/2006/0006http://www.debian.org/security/2006/dsa-1012http://www.redhat.com/support/errata/RHSA-2007-0203.htmlhttp://secunia.com/advisories/25098http://www.mandriva.com/security/advisories?name=MDKSA-2006:050http://www.info-zip.org/FAQ.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11252https://usn.ubuntu.com/248-2/https://usn.ubuntu.com/248-1/http://www.securityfocus.com/archive/1/430300/100/0/threadedhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=349794https://usn.ubuntu.com/248-1/https://nvd.nist.govhttps://www.exploit-db.com/exploits/26913/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook