Vulnerability Description
Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code, allows remote attackers to cause a denial of service (segmentation fault) or execute arbitrary code via a crafted RAR archive.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| 7-Zip | 7-Zip | < 18.00 |
| 7-Zip | P7Zip | < 18.0 |
| Debian | Debian Linux | 7.0 |
Related Weaknesses (CWE)
References
- http://www.securitytracker.com/id/1040831
- https://0patch.blogspot.si/2018/02/two-interesting-micropatches-for-7-zip.html
- https://github.com/p7zip-project/p7zip/issues/32
- https://github.com/p7zip-project/p7zip/issues/8
- https://landave.io/2018/01/7-zip-multiple-memory-corruptions-via-rar-and-zip/ExploitTechnical DescriptionThird Party Advisory
- http://www.securitytracker.com/id/1040831
- https://0patch.blogspot.si/2018/02/two-interesting-micropatches-for-7-zip.html
- https://landave.io/2018/01/7-zip-multiple-memory-corruptions-via-rar-and-zip/ExploitTechnical DescriptionThird Party Advisory
FAQ
What is CVE-2018-5996?
CVE-2018-5996 is a vulnerability with a CVSS score of 7.8 (HIGH). Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code, allows remote attackers to ...
How severe is CVE-2018-5996?
CVE-2018-5996 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-5996?
Check the references section above for vendor advisories and patch information. Affected products include: 7-Zip 7-Zip, 7-Zip P7Zip, Debian Debian Linux.