CVE-2018-13410 -- zipID: oval:org.secpod.oval:def:2000417 | Date: (C)2019-04-21 (M)2024-05-16 |
Class: VULNERABILITY | Family: unix |
** DISPUTED ** Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, allows attackers to cause a denial of service or possibly have unspecified other impact because of an off-by-one error. NOTE: it is unclear whether there are realistic scenarios in which an untrusted party controls the -TT value, given that the entire purpose of -TT is execution of arbitrary commands.
Platform: |
Debian 8.x |
Debian 9.x |