Download
| Alert*
|
oval:org.secpod.oval:def:2101624
Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZlibFile method in 7zip before 16.00 and p7zip allows remote attackers to execute arbitrary code via a crafted HFS+ image. oval:org.secpod.oval:def:110895 p7zip is a port of 7za.exe for Unix. 7-Zip is a file archiver with a very high compression ratio oval:org.secpod.oval:def:43305 The host is installed with 7 zip before 16.00 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted HFS+ image. Successful exploitation could allow attackers to execute arbitrary code. |
