CVE-2008-6536

Severity

99%

Complexity

99%

Confidentiality

165%

Unspecified vulnerability in 7-zip before 4.5.7 has unknown impact and remote attack vectors, as demonstrated by the PROTOS GENOME test suite for Archive Formats (c10).

Unspecified vulnerability in 7-zip before 4.5.7 has unknown impact and remote attack vectors, as demonstrated by the PROTOS GENOME test suite for Archive Formats (c10).

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

7-Zip

First reported 15 years ago

2009-03-30 01:30:00

Last updated 7 years ago

2017-08-17 01:29:00

Affected Software

7-Zip 3.13

3.13

7-Zip 4.20

4.20

7-Zip 4.23

4.23

7-Zip 4.24 beta

4.24

7-Zip 4.25 beta

4.25

7-Zip 4.26 beta

4.26

7-Zip 4.27 beta

4.27

7-Zip 4.28 beta

4.28

7-Zip 4.29 beta

4.29

7-Zip 4.30 beta

4.30

7-Zip 4.31

4.31

7-Zip 4.32

4.32

7-Zip 4.33 beta

4.33

7-Zip 4.34 beta

4.34

7-Zip 4.35 beta

4.35

7-Zip 4.36 beta

4.36

7-Zip 4.37 beta

4.37

7-Zip 4.38 beta

4.38

7-Zip 4.39 beta

4.39

7-Zip 4.40 beta

4.40

7-Zip 4.41 beta

4.41

7-Zip 4.42

4.42

7-Zip 4.43 beta

4.43

7-Zip 4.44 beta

4.44

7-Zip 4.45 beta

4.45

7-Zip 4.46 beta

4.46

7-Zip 4.47 beta

4.47

7-Zip 4.48 beta

4.48

7-Zip 4.49 beta

4.49

7-Zip 4.50 beta

4.50

7-Zip 4.51 beta

4.51

7-Zip 4.52 beta

4.52

7-Zip 4.53 beta

4.53

7-Zip 4.54 beta

4.54

7-Zip 4.55 beta

4.55

References

43649

29434

Vendor Advisory

http://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html

http://www.ee.oulu.fi/research/ouspg/protos/testing/c10/archive/

28285

ADV-2008-0914

Patch, Vendor Advisory

http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf

7zip-archives-code-execution(41247)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.