Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Debian Local Security Checks --> Category: infos

[DSA624] DSA-624-1 zip Vulnerability Scan

Vulnerability Scan Summary
DSA-624-1 zip

Detailed Explanation for this Vulnerability Test

A buffer overflow has been discovered in zip, the archiver for .zip
files. When doing recursive folder compression the program did not
check the resulting path length, which would lead to memory being
overwritten. A malicious person could convince a user to create an
archive containing a specially crafted path name, which could lead to
the execution of arbitrary code.
For the stable distribution (woody) this problem has been fixed in
version 2.30-5woody2.
For the unstable distribution (sid) this problem has been fixed in
version 2.30-8.
We recommend that you upgrade your zip package.

Solution :
Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.