cve/2018/CVE-2018-1056.md

CVE-2018-1056

Description

An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. An attacker could potentially use this flaw to crash the advzip utility by tricking it into processing crafted ZIP files.

POC

Reference

• https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889270
• https://sourceforge.net/p/advancemame/bugs/259/

Github

• https://github.com/0xT11/CVE-POC
• https://github.com/developer3000S/PoC-in-GitHub
• https://github.com/hectorgie/PoC-in-GitHub