#VU36814 Out-of-bounds read in AdvanceCOMP - CVE-2018-1056

Cybersecurity Help s.r.o.

Published: 2018-07-27 | Updated: 2020-08-08

Vulnerability identifier: #VU36814

Vulnerability risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2018-1056

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
AdvanceCOMP
Universal components / Libraries / Libraries used by multiple products

Vendor: Andrea Mazzoleni

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. An attacker could potentially use this flaw to crash the advzip utility by tricking it into processing crafted ZIP files.

Mitigation
Install update from vendor's website.

Vulnerable software versions

AdvanceCOMP: 2.0

External links
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889270
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1056
https://lists.debian.org/debian-lts-announce/2018/02/msg00016.html
https://lists.debian.org/debian-lts-announce/2019/03/msg00004.html
https://sourceforge.net/p/advancemame/bugs/259/
https://usn.ubuntu.com/3570-1/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Out-of-bounds read in AdvanceCOMP

Fedora 28 update for advancecomp

Fedora 27 update for advancecomp