SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   UnZip Vendors:   Info-ZIP
UnZip NEEDBITS Macro Memory Free May Let Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1019634
SecurityTracker URL:  http://securitytracker.com/id/1019634
CVE Reference:   CVE-2008-0888   (Links to External Site)
Date:  Mar 18 2008
Impact:   Denial of service via network, Execution of arbitrary code via network, User access via network


Description:   A vulnerability was reported in UnZip. A remote user may be able to cause arbitrary code to be executed on the target user's system.

A remote user can create a specially crafted file that, when unzipped by the target user or application, will cause uninitialized memory or previously freed memory to be freed. This can cause the target application to crash or potentially execute arbitrary code.

The vulnerability resides in the NEEDBITS macro in the inflate_dynamic() function in 'inflate.c'.

Tavis Ormandy reported this vulnerability.

Impact:   A remote user can create a file that, when unzipped by the target user or application, will execute arbitrary code on the target system or cause the application to crash.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.info-zip.org/UnZip.html (Links to External Site)
Cause:   Access control error, State error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Mar 18 2008 (Red Hat Issues Fix) UnZip NEEDBITS Macro Memory Free May Let Remote Users Execute Arbitrary Code
Red Hat has released a fix for Red Hat Enterprise Linux 2.1 and 3.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC