Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Red Hat Local Security Checks --> Category: infos

RHSA-2004-634: zip Vulnerability Scan

Vulnerability Scan Summary
Check for the version of the zip packages

Detailed Explanation for this Vulnerability Test

An updated zip package that fixes a buffer overflow vulnerability is now

The zip program is an archiving utility which can create ZIP-compatible

A buffer overflow bug has been discovered in zip when handling long file
names. A possible hacker could create a specially crafted path which could
cause zip to crash or execute arbitrary instructions. The Common
Vulnerabilities and Exposures project ( has assigned the name
CVE-2004-1010 to this issue.

Users of zip should upgrade to this updated package, which contains
backported patches and is not vulnerable to this issue.

Solution :
Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.