Copy
The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service (out-of-bounds read) or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file.
Source: CERT/CC
Max CVSS
8.8
EPSS Score
1.30%
Published
2016-06-07
Updated
2019-03-21
Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZlibFile method in 7zip before 16.00 and p7zip allows remote attackers to execute arbitrary code via a crafted HFS+ image.
Source: CERT/CC
Max CVSS
9.3
EPSS Score
1.12%
Published
2016-12-13
Updated
2017-12-03