vulnerability
FreeBSD: VID-0BF816F6-3CFE-11EC-86CD-DCA632B19F10 (CVE-2018-1056): advancecomp -- multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Feb 14, 2018 | Nov 4, 2022 | Nov 4, 2022 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Feb 14, 2018
Added
Nov 4, 2022
Modified
Nov 4, 2022
Description
An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. An attacker could potentially use this flaw to crash the advzip utility by tricking it into processing crafted ZIP files.
Solution
freebsd-upgrade-package-advancecomp
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.