4 results (0.009 seconds)

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

unzoo allows remote attackers to cause a denial of service (infinite loop and resource consumption) via unspecified vectors to the (1) ExtrArch or (2) ListArch function, related to pointer handling. unzoo permite a atacantes remotos causar una denegación de servicio (bucle infinito y consumo de recursos) a través de vectores no especificados en la función (1) ExtrArch o (2) ListArch, relacionado con el manejo de punteros. • http://www.openwall.com/lists/oss-security/2015/04/01/5 http://www.securityfocus.com/bid/73686 http://www.securitytracker.com/id/1032011 https://bugzilla.redhat.com/show_bug.cgi?id=1207647 • CWE-399: Resource Management Errors •

CVSS: 10.0EPSS: 3%CPEs: 1EXPL: 0

Buffer overflow in the EntrReadArch function in unzoo might allow remote attackers to execute arbitrary code via unspecified vectors. Desbordamiento de buffer en la función EntrReadArch en unzoo podría permitir a atacantes remotos ejecutar código arbitrario a través de vectores no especificados. • http://www.openwall.com/lists/oss-security/2015/04/01/5 http://www.securityfocus.com/bid/73693 http://www.securitytracker.com/id/1032011 https://bugzilla.redhat.com/show_bug.cgi?id=1207645 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.8EPSS: 7%CPEs: 59EXPL: 1

unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file. El archivo unzoo.c, tal como se utiliza en varios productos, incluyendo AMaViS versión 2.4.1 y anteriores, permite a los atacantes remotos causar una denegación de servicio (bucle infinito) por medio de un archivo ZOO con una estructura direntry que apunta hacia un archivo anterior. • http://osvdb.org/36208 http://secunia.com/advisories/25315 http://securityreason.com/securityalert/2680 http://www.amavis.org/security/asa-2007-2.txt http://www.securityfocus.com/archive/1/467646/100/0/threaded http://www.securityfocus.com/bid/23823 https://exchange.xforce.ibmcloud.com/vulnerabilities/34080 • CWE-399: Resource Management Errors •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Directory traversal vulnerability in Unzoo 4.4-2 has unknown impact and attack vectors. • http://secunia.com/advisories/12857 http://securitytracker.com/id?1011673 http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2004-10/0466.html http://www.securityfocus.com/bid/11417 •