Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2004-634: zip

Vulnerability Assessment Details

RHSA-2004-634: zip
Vulnerability Assessment Summary
Check for the version of the zip packages

Detailed Explanation for this Vulnerability Assessment


An updated zip package that fixes a buffer overflow vulnerability is now
available.

The zip program is an archiving utility which can create ZIP-compatible
archives.

A buffer overflow bug has been discovered in zip when handling long file
names. A possible hacker could create a specially crafted path which could
cause zip to crash or execute arbitrary instructions. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CVE-2004-1010 to this issue.

Users of zip should upgrade to this updated package, which contains
backported patches and is not vulnerable to this issue.




Solution : http://rhn.redhat.com/errata/RHSA-2004-634.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security
Cables, Connectors


Dell PowerEdge R630 Server 3.50Ghz 8-Core 192GB 10x NEW 2TB SSD H730P Rails picture

Dell PowerEdge R630 Server 3.50Ghz 8-Core 192GB 10x NEW 2TB SSD H730P Rails

$2877.90


Dell PowerEdge R730 Server 3.50Ghz 8-Core 32GB 9x NEW 2TB SSD HBA330 Rails picture

Dell PowerEdge R730 Server 3.50Ghz 8-Core 32GB 9x NEW 2TB SSD HBA330 Rails

$2522.35


Dell Optiplex 5060 SFF 8th Gen Core i7 3.2GHZ 16GB 512GB Win 11 Pro picture

Dell Optiplex 5060 SFF 8th Gen Core i7 3.2GHZ 16GB 512GB Win 11 Pro

$249.00


Gaming pc i7-5960x 8core 32gb 1tb 5700xt watercooled picture

Gaming pc i7-5960x 8core 32gb 1tb 5700xt watercooled

$725.00


Intel - Core i9-13900K 13th Gen 24 cores 8 P-cores + 16 E-cores 36M Cache, 3 ... picture

Intel - Core i9-13900K 13th Gen 24 cores 8 P-cores + 16 E-cores 36M Cache, 3 ...

$689.99


AMD Ryzen 7 7800X3D 8-Core - 16-Thread 4.2 GHz (5.0 GHz Max Boost) Socket A... picture

AMD Ryzen 7 7800X3D 8-Core - 16-Thread 4.2 GHz (5.0 GHz Max Boost) Socket A...

$339.95


Intel - Core i7-13700K 13th Gen 16 cores 8 P-cores + 8 E-cores 30M Cache, 3.4... picture

Intel - Core i7-13700K 13th Gen 16 cores 8 P-cores + 8 E-cores 30M Cache, 3.4...

$489.99


Apple Mac Pro Processor Tray 5,1 2010 2012 2.4ghz 8 core picture

Apple Mac Pro Processor Tray 5,1 2010 2012 2.4ghz 8 core

$79.99


Dell 9020 Optiplex Micro-Intel Core i5 - 1TB SSD 8GB RAM Window 11 picture

Dell 9020 Optiplex Micro-Intel Core i5 - 1TB SSD 8GB RAM Window 11

$129.49


Lenovo IdeaCentre 3 07IRB8 Desktop Intel Core i5-13400 16GB 512GB SSD W11H picture

Lenovo IdeaCentre 3 07IRB8 Desktop Intel Core i5-13400 16GB 512GB SSD W11H

$429.99


Discussions

No Discussions have been posted on this vulnerability.