CVE-2010-0001

Severity

68%

Complexity

86%

Confidentiality

106%

Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error.

Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error.

CVSS 2.0 Base Score 6.8. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:P/A:P).

Overview

First reported 15 years ago

2010-01-29 18:30:00

Last updated 7 years ago

2017-09-19 01:30:00

Affected Software

GNU Gzip 1.2.4

1.2.4

GNU Gzip 1.2.4a

1.2.4a

GNU Gzip 1.3

1.3

GNU Gzip 1.3.3

1.3.3

GNU Gzip 1.3.4

1.3.4

GNU Gzip 1.3.5

1.3.5

GNU Gzip 1.3.6

1.3.6

GNU Gzip 1.3.7

1.3.7

GNU Gzip 1.3.8

1.3.8

GNU Gzip 1.3.9

1.3.9

GNU Gzip 1.3.10

1.3.10

GNU Gzip 1.3.11

1.3.11

GNU Gzip 1.3.12

1.3.12

GNU Gzip

References

http://git.savannah.gnu.org/cgit/gzip.git/commit/?id=a3db5806d012082b9e25cc36d09f19cd736a468f

SSRT100018

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

APPLE-SA-2010-11-10-1

SUSE-SA:2010:008

http://ncompress.sourceforge.net/#status

http://savannah.gnu.org/forum/forum.php?forum_id=6153

38220

Vendor Advisory

38223

Vendor Advisory

38225

Vendor Advisory

38232

Vendor Advisory

40551

40655

40689

1023490

http://support.apple.com/kb/HT4435

DSA-1974

DSA-2074

MDVSA-2010:019

MDVSA-2010:020

MDVSA-2011:152

61869

RHSA-2010:0061

USN-889-1

ADV-2010-0185

Vendor Advisory

ADV-2010-1796

ADV-2010-1872

https://bugzilla.redhat.com/show_bug.cgi?id=554418

oval:org.mitre.oval:def:10546

oval:org.mitre.oval:def:7511

RHSA-2010:0095

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.