Stack Buffer Overflow in lrzip 0.631: Denial of Service via Crafted File

Stack Buffer Overflow in lrzip 0.631: Denial of Service via Crafted File

CVE-2017-9928 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

In lrzip 0.631, a stack buffer overflow was found in the function get_fileinfo in lrzip.c:979, which allows attackers to cause a denial of service via a crafted file.

Learn more about our Web Application Penetration Testing UK.