Compression Plus and Tumblweed EMF Stack Overflow

2006.09.08

Credit: Michael Hale Ligh (michael ligh mnin org)

Risk: Medium

Local: No

Remote: Yes

CVE: CVE-2006-4554

CWE: CWE-Other

CVSS Base Score: 5.1/10

Impact Subscore: 6.4/10

Exploitability Subscore: 4.9/10

Exploit range: Remote

Attack complexity: High

Authentication: No required

Confidentiality impact: Partial

Integrity impact: Partial

Availability impact: Partial

The Compression Plus library is designed to handle de/compression of
popular archiving formats such as ARC, ARK, PAK, ARJ, CAB, GZ, LBR, TAR,
TAZ, TGZ, Z, ZIP, and ZOO. The code fails to properly validate input
while processing specially crafted ZOO files, which results in a
stack-based buffer overflow. Software products that implement the
Compression Plus library are vulnerable to local or remote code
execution, depending on the nature of the calling process.
Details are available from the following URL:
http://www.mnin.org/advisories/2006_cp5_tweed.pdf

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Compression Plus and Tumblweed EMF Stack Overflow

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.