Lucene search
HistoryFeb 23, 2015 - 5:59 p.m.
CVE-2015-1315
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.063
Percentile
93.7%
Buffer overflow in the charset_to_intern function in unix/unix.c in Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code via a crafted string, as demonstrated by converting a string from CP866 to UTF-8.
Affected configurations
Node
canonicalubuntu_linuxMatch12.04lts
ORcanonicalubuntu_linuxMatch14.04lts
ORcanonicalubuntu_linuxMatch14.10
Node
info-zipunzipMatch6.10b
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | 12.04 | cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:* |
| canonical | ubuntu_linux | 14.04 | cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:* |
| canonical | ubuntu_linux | 14.10 | cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:* |
| info-zip | unzip | 6.10b | cpe:2.3:a:info-zip:unzip:6.10b:*:*:*:*:*:*:* |
Related
ubuntu
ubuntu
unzip vulnerabilities
2015-02-17 00:00:00
prion
prion
Buffer overflow
2015-02-23 17:59:00
cvelist
cvelist
CVE-2015-1315
2015-02-23 17:00:00
ubuntucve
ubuntucve
CVE-2015-1315
2015-02-17 00:00:00
broadcom
broadcom
cve
cve
CVE-2015-1315
2015-02-23 17:59:00
openvas
openvas
Ubuntu: Security Advisory (USN-2502-1)
2015-02-18 00:00:00
Mageia: Security Advisory (MGASA-2018-0422)
2022-01-28 00:00:00
debiancve
debiancve
CVE-2015-1315
2015-02-23 17:59:00
nessus
nessus
FreeBSD : unzip -- heap based buffer overflow in iconv patch (3680b234-b6f0-11e4-b7cc-d050992ecde8)
2015-02-18 00:00:00
Ubuntu 14.04 LTS : unzip vulnerabilities (USN-2502-1)
2015-02-18 00:00:00
freebsd
freebsd
unzip -- heap based buffer overflow in iconv patch
2015-02-17 00:00:00
securityvulns
securityvulns
[USN-2502-1] unzip vulnerabilities
2015-02-22 00:00:00
UnZip multiple security vulnerabilities
2015-02-22 00:00:00
mageia
mageia
Updated unzip packages fix security vulnerabilities
2018-10-30 21:01:43
packetstorm
packetstorm
InfoZip UnZip 6.00 / 6.1c22 Buffer Overflow
2018-02-07 00:00:00
zdt
zdt
InfoZip UnZip 6.00 / 6.1c22 Buffer Overflow Vulnerability
2018-02-08 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.6
Confidence
Low
EPSS
0.063
Percentile
93.7%
Related for NVD:CVE-2015-1315