Vulnerability Name:

CVE-2004-1010 (CCN-17956)

Assigned:2004-11-03
Published:2004-11-03
Updated:2018-10-03
Summary:Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname.
CVSS v3 Severity:10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Denial of Service
References:Source: CCN
Type: Full-Disclosure Mailing List, Wed Nov 03 2004 - 17:11:29 CST
Zip/Linux long path buffer overflow

Source: MITRE
Type: CNA
CVE-2004-1010

Source: FULLDISC
Type: UNKNOWN
20041103 [HV-MED] Zip/Linux long path buffer overflow

Source: BUGTRAQ
Type: UNKNOWN
20041103 [HV-MED] Zip/Linux long path buffer overflow

Source: CCN
Type: RHSA-2004-634
zip security update

Source: SECUNIA
Type: UNKNOWN
13094

Source: GENTOO
Type: UNKNOWN
GLSA-200411-16

Source: CCN
Type: CIAC Information Bulletin P-072
Updated ZIP Packages

Source: CIAC
Type: UNKNOWN
P-072

Source: DEBIAN
Type: UNKNOWN
DSA-624

Source: DEBIAN
Type: DSA-624
zip -- buffer overflow

Source: CCN
Type: GLSA-200411-16
zip: Path name buffer overflow

Source: MISC
Type: UNKNOWN
http://www.hexview.com/docs/20041103-1.txt

Source: CCN
Type: Info-ZIP Web site
Info-ZIP Home Page

Source: CONFIRM
Type: UNKNOWN
http://www.info-zip.org/FAQ.html

Source: MANDRAKE
Type: UNKNOWN
MDKSA-2004:141

Source: REDHAT
Type: UNKNOWN
RHSA-2004:634

Source: BID
Type: Patch, Vendor Advisory
11603

Source: CCN
Type: BID-11603
Info-ZIP Zip Remote Recursive Directory Compression Buffer Overflow Vulnerability

Source: CCN
Type: TLSA-2005-18
Buffer overflow in zip allows arbitrary code execution

Source: TURBO
Type: UNKNOWN
TLSA-2005-18

Source: CCN
Type: USN-18-1
zip vulnerability

Source: FEDORA
Type: UNKNOWN
FLSA:2255

Source: XF
Type: UNKNOWN
infozip-zip-bo(17956)

Source: XF
Type: UNKNOWN
infozip-compressed-folder-bo(17956)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:9848

Source: UBUNTU
Type: UNKNOWN
USN-18-1

Source: SUSE
Type: SUSE-SR:2004:003
SUSE Security Summary Report

Vulnerable Configuration:Configuration 1:
  • cpe:/a:info-zip:zip:2.3:*:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20041010
    V
    		CVE-2004-1010
    2015-11-16
    oval:org.mitre.oval:def:9848
    V
    		Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname.
    2013-04-29
    oval:org.debian:def:624
    V
    		buffer overflow
    2005-01-05
    oval:com.redhat.rhsa:def:20040634
    P
    		RHSA-2004:634: zip security update (Low)
    2004-12-16
    BACK
    info-zip zip 2.3