CVE-2017-5601 in libarchiveinfo

Summary

An error in the lha_read_file_header_1() function (archive_read_support_format_lha.c) in libarchive 3.2.2 allows remote attackers to trigger an out-of-bounds read memory access and subsequently cause a crash via a specially crafted archive.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

01/27/2017

Disclosure

01/27/2017

Moderation

VulDB entry created

Entries

1: VDB-96243

CPE

ready

CWE

CWE-125 (Confirmed)

CVSS

7.4

EPSS

0.00686

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-5601
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-5601
CVE Details	https://www.cvedetails.com/cve/CVE-2017-5601/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!