Out-of-bounds read in AdvanceCOMP
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2018-1056 |
| CWE-ID | CWE-125 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
AdvanceCOMP Universal components / Libraries / Libraries used by multiple products |
| Vendor | Andrea Mazzoleni |
Security Bulletin
This security bulletin contains one high risk vulnerability.
1) Out-of-bounds read
EUVDB-ID: #VU36814
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2018-1056
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. An attacker could potentially use this flaw to crash the advzip utility by tricking it into processing crafted ZIP files.
MitigationInstall update from vendor's website.
Vulnerable software versionsAdvanceCOMP: 2.0
CPE2.3 External linkshttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889270
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1056
https://lists.debian.org/debian-lts-announce/2018/02/msg00016.html
https://lists.debian.org/debian-lts-announce/2019/03/msg00004.html
https://sourceforge.net/p/advancemame/bugs/259/
https://usn.ubuntu.com/3570-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
