CVE-2017-17969

Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service (out-of-bounds write) or potentially execute arbitrary code via a crafted ZIP archive.

Published : 2018-01-30 16:29 Updated : 2019-03-21 20:29

6.8
CVSS Score More info
Score 6.8 / 10
6.8
Vendor Product Version URI
7-zip 7-zip 3.13 cpe:/a:7-zip:7-zip:3.13
7-zip 7-zip 4.20 cpe:/a:7-zip:7-zip:4.20
7-zip 7-zip 4.23 cpe:/a:7-zip:7-zip:4.23
7-zip 7-zip 4.24 cpe:/a:7-zip:7-zip:4.24:beta
7-zip 7-zip 4.25 cpe:/a:7-zip:7-zip:4.25:beta
7-zip 7-zip 4.26 cpe:/a:7-zip:7-zip:4.26:beta
7-zip 7-zip 4.27 cpe:/a:7-zip:7-zip:4.27:beta
7-zip 7-zip 4.28 cpe:/a:7-zip:7-zip:4.28:beta
7-zip 7-zip 4.29 cpe:/a:7-zip:7-zip:4.29:beta
7-zip 7-zip 4.30 cpe:/a:7-zip:7-zip:4.30:beta
7-zip 7-zip 4.31 cpe:/a:7-zip:7-zip:4.31
7-zip 7-zip 4.32 cpe:/a:7-zip:7-zip:4.32
7-zip 7-zip 4.33 cpe:/a:7-zip:7-zip:4.33:beta
7-zip 7-zip 4.34 cpe:/a:7-zip:7-zip:4.34:beta
7-zip 7-zip 4.35 cpe:/a:7-zip:7-zip:4.35:beta
7-zip 7-zip 4.36 cpe:/a:7-zip:7-zip:4.36:beta
7-zip 7-zip 4.37 cpe:/a:7-zip:7-zip:4.37:beta
7-zip 7-zip 4.38 cpe:/a:7-zip:7-zip:4.38:beta
7-zip 7-zip 4.39 cpe:/a:7-zip:7-zip:4.39:beta
7-zip 7-zip 4.40 cpe:/a:7-zip:7-zip:4.40:beta
7-zip 7-zip 4.41 cpe:/a:7-zip:7-zip:4.41:beta
7-zip 7-zip 4.42 cpe:/a:7-zip:7-zip:4.42
7-zip 7-zip 4.43 cpe:/a:7-zip:7-zip:4.43:beta
7-zip 7-zip 4.44 cpe:/a:7-zip:7-zip:4.44:beta
7-zip 7-zip 4.45 cpe:/a:7-zip:7-zip:4.45:beta
7-zip 7-zip 4.46 cpe:/a:7-zip:7-zip:4.46:beta
7-zip 7-zip 4.47 cpe:/a:7-zip:7-zip:4.47:beta
7-zip 7-zip 4.48 cpe:/a:7-zip:7-zip:4.48:beta
7-zip 7-zip 4.49 cpe:/a:7-zip:7-zip:4.49:beta
7-zip 7-zip 4.50 cpe:/a:7-zip:7-zip:4.50:beta
7-zip 7-zip 4.51 cpe:/a:7-zip:7-zip:4.51:beta
7-zip 7-zip 4.52 cpe:/a:7-zip:7-zip:4.52:beta
7-zip 7-zip 4.53 cpe:/a:7-zip:7-zip:4.53:beta
7-zip 7-zip 4.54 cpe:/a:7-zip:7-zip:4.54:beta
7-zip 7-zip 4.55 cpe:/a:7-zip:7-zip:4.55:beta
7-zip 7-zip 4.56 cpe:/a:7-zip:7-zip:4.56:beta
7-zip 7-zip 4.57 cpe:/a:7-zip:7-zip:4.57
7-zip 7-zip 4.58 cpe:/a:7-zip:7-zip:4.58:beta
7-zip 7-zip 4.59 cpe:/a:7-zip:7-zip:4.59:beta
7-zip 7-zip 4.60 cpe:/a:7-zip:7-zip:4.60:beta
7-zip 7-zip 4.61 cpe:/a:7-zip:7-zip:4.61:beta
7-zip 7-zip 4.62 cpe:/a:7-zip:7-zip:4.62
7-zip 7-zip 4.63 cpe:/a:7-zip:7-zip:4.63
7-zip 7-zip 4.64 cpe:/a:7-zip:7-zip:4.64
7-zip 7-zip 4.65 cpe:/a:7-zip:7-zip:4.65
7-zip 7-zip 4.65 cpe:/a:7-zip:7-zip:4.65::~~~~x64~
7-zip 7-zip 9.04 cpe:/a:7-zip:7-zip:9.04:beta
7-zip 7-zip 9.06 cpe:/a:7-zip:7-zip:9.06:beta
7-zip 7-zip 9.07 cpe:/a:7-zip:7-zip:9.07:beta
7-zip 7-zip 9.10 cpe:/a:7-zip:7-zip:9.10:beta
7-zip 7-zip 9.11 cpe:/a:7-zip:7-zip:9.11:beta
7-zip 7-zip 9.12 cpe:/a:7-zip:7-zip:9.12:beta
7-zip 7-zip 9.13 cpe:/a:7-zip:7-zip:9.13:beta
7-zip 7-zip 9.20 cpe:/a:7-zip:7-zip:9.20
7-zip 7-zip 9.20 cpe:/a:7-zip:7-zip:9.20::~~~~x64~
7-zip 7-zip 9.22 cpe:/a:7-zip:7-zip:9.22:beta
7-zip 7-zip 15.14 cpe:/a:7-zip:7-zip:15.14
7-zip P7zip 0.80 cpe:/a:7-zip:p7zip:0.80
7-zip P7zip 0.81 cpe:/a:7-zip:p7zip:0.81
7-zip P7zip 0.90 cpe:/a:7-zip:p7zip:0.90
7-zip P7zip 0.91 cpe:/a:7-zip:p7zip:0.91
7-zip P7zip 4.10 cpe:/a:7-zip:p7zip:4.10
7-zip P7zip 4.12 cpe:/a:7-zip:p7zip:4.12
7-zip P7zip 4.13 cpe:/a:7-zip:p7zip:4.13
7-zip P7zip 4.14 cpe:/a:7-zip:p7zip:4.14
7-zip P7zip 4.14.01 cpe:/a:7-zip:p7zip:4.14.01
7-zip P7zip 4.16 cpe:/a:7-zip:p7zip:4.16
7-zip P7zip 4.18 cpe:/a:7-zip:p7zip:4.18
7-zip P7zip 4.20 cpe:/a:7-zip:p7zip:4.20
7-zip P7zip 4.27 cpe:/a:7-zip:p7zip:4.27
7-zip P7zip 4.29 cpe:/a:7-zip:p7zip:4.29
7-zip P7zip 4.30 cpe:/a:7-zip:p7zip:4.30
7-zip P7zip 4.33 cpe:/a:7-zip:p7zip:4.33
7-zip P7zip 4.37 cpe:/a:7-zip:p7zip:4.37
7-zip P7zip 4.39 cpe:/a:7-zip:p7zip:4.39
7-zip P7zip 4.42 cpe:/a:7-zip:p7zip:4.42
7-zip P7zip 4.43 cpe:/a:7-zip:p7zip:4.43
7-zip P7zip 4.44 cpe:/a:7-zip:p7zip:4.44
7-zip P7zip 4.45 cpe:/a:7-zip:p7zip:4.45
7-zip P7zip 4.47 cpe:/a:7-zip:p7zip:4.47
7-zip P7zip 4.48 cpe:/a:7-zip:p7zip:4.48
7-zip P7zip 4.49 cpe:/a:7-zip:p7zip:4.49
7-zip P7zip 4.51 cpe:/a:7-zip:p7zip:4.51
7-zip P7zip 4.53 cpe:/a:7-zip:p7zip:4.53
7-zip P7zip 4.55 cpe:/a:7-zip:p7zip:4.55
7-zip P7zip 4.57 cpe:/a:7-zip:p7zip:4.57
7-zip P7zip 4.58 cpe:/a:7-zip:p7zip:4.58
7-zip P7zip 4.61 cpe:/a:7-zip:p7zip:4.61
7-zip P7zip 4.65 cpe:/a:7-zip:p7zip:4.65
7-zip P7zip 9.04 cpe:/a:7-zip:p7zip:9.04
7-zip P7zip 9.20.1 cpe:/a:7-zip:p7zip:9.20.1
7-zip P7zip 16.02 cpe:/a:7-zip:p7zip:16.02
Debian Debian Linux 7.0 cpe:/o:debian:debian_linux:7.0
Debian Debian Linux 8.0 cpe:/o:debian:debian_linux:8.0
Debian Debian Linux 9.0 cpe:/o:debian:debian_linux:9.0
7-zip 7-zip 3.13 cpe:/a:7-zip:7-zip:3.13::~~~windows~~
7-zip 7-zip 4.20 cpe:/a:7-zip:7-zip:4.20::~~~windows~~
7-zip 7-zip 4.23 cpe:/a:7-zip:7-zip:4.23::~~~windows~~
7-zip 7-zip 4.24 cpe:/a:7-zip:7-zip:4.24:beta:~~~windows~~
7-zip 7-zip 4.25 cpe:/a:7-zip:7-zip:4.25:beta:~~~windows~~
7-zip 7-zip 4.26 cpe:/a:7-zip:7-zip:4.26:beta:~~~windows~~
7-zip 7-zip 4.27 cpe:/a:7-zip:7-zip:4.27:beta:~~~windows~~
7-zip 7-zip 4.28 cpe:/a:7-zip:7-zip:4.28:beta:~~~windows~~
7-zip 7-zip 4.29 cpe:/a:7-zip:7-zip:4.29:beta:~~~windows~~
7-zip 7-zip 4.30 cpe:/a:7-zip:7-zip:4.30:beta:~~~windows~~
7-zip 7-zip 4.31 cpe:/a:7-zip:7-zip:4.31::~~~windows~~
7-zip 7-zip 4.32 cpe:/a:7-zip:7-zip:4.32::~~~windows~~
7-zip 7-zip 4.33 cpe:/a:7-zip:7-zip:4.33:beta:~~~windows~~
7-zip 7-zip 4.34 cpe:/a:7-zip:7-zip:4.34:beta:~~~windows~~
7-zip 7-zip 4.35 cpe:/a:7-zip:7-zip:4.35:beta:~~~windows~~
7-zip 7-zip 4.36 cpe:/a:7-zip:7-zip:4.36:beta:~~~windows~~
7-zip 7-zip 4.37 cpe:/a:7-zip:7-zip:4.37:beta:~~~windows~~
7-zip 7-zip 4.38 cpe:/a:7-zip:7-zip:4.38:beta:~~~windows~~
7-zip 7-zip 4.39 cpe:/a:7-zip:7-zip:4.39:beta:~~~windows~~
7-zip 7-zip 4.40 cpe:/a:7-zip:7-zip:4.40:beta:~~~windows~~
7-zip 7-zip 4.41 cpe:/a:7-zip:7-zip:4.41:beta:~~~windows~~
7-zip 7-zip 4.42 cpe:/a:7-zip:7-zip:4.42::~~~windows~~
7-zip 7-zip 4.43 cpe:/a:7-zip:7-zip:4.43:beta:~~~windows~~
7-zip 7-zip 4.44 cpe:/a:7-zip:7-zip:4.44:beta:~~~windows~~
7-zip 7-zip 4.45 cpe:/a:7-zip:7-zip:4.45:beta:~~~windows~~
7-zip 7-zip 4.46 cpe:/a:7-zip:7-zip:4.46:beta:~~~windows~~
7-zip 7-zip 4.47 cpe:/a:7-zip:7-zip:4.47:beta:~~~windows~~
7-zip 7-zip 4.48 cpe:/a:7-zip:7-zip:4.48:beta:~~~windows~~
7-zip 7-zip 4.49 cpe:/a:7-zip:7-zip:4.49:beta:~~~windows~~
7-zip 7-zip 4.50 cpe:/a:7-zip:7-zip:4.50:beta:~~~windows~~
7-zip 7-zip 4.51 cpe:/a:7-zip:7-zip:4.51:beta:~~~windows~~
7-zip 7-zip 4.52 cpe:/a:7-zip:7-zip:4.52:beta:~~~windows~~
7-zip 7-zip 4.53 cpe:/a:7-zip:7-zip:4.53:beta:~~~windows~~
7-zip 7-zip 4.54 cpe:/a:7-zip:7-zip:4.54:beta:~~~windows~~
7-zip 7-zip 4.55 cpe:/a:7-zip:7-zip:4.55:beta:~~~windows~~
7-zip 7-zip 4.56 cpe:/a:7-zip:7-zip:4.56:beta:~~~windows~~
7-zip 7-zip 4.57 cpe:/a:7-zip:7-zip:4.57::~~~windows~~
7-zip 7-zip 4.58 cpe:/a:7-zip:7-zip:4.58:beta:~~~windows~~
7-zip 7-zip 4.59 cpe:/a:7-zip:7-zip:4.59:beta:~~~windows~~
7-zip 7-zip 4.60 cpe:/a:7-zip:7-zip:4.60:beta:~~~windows~~
7-zip 7-zip 4.61 cpe:/a:7-zip:7-zip:4.61:beta:~~~windows~~
7-zip 7-zip 4.62 cpe:/a:7-zip:7-zip:4.62::~~~windows~~
7-zip 7-zip 4.63 cpe:/a:7-zip:7-zip:4.63::~~~windows~~
7-zip 7-zip 4.64 cpe:/a:7-zip:7-zip:4.64::~~~windows~~
7-zip 7-zip 4.65 cpe:/a:7-zip:7-zip:4.65::~~~windows~~
7-zip 7-zip 9.04 cpe:/a:7-zip:7-zip:9.04:beta:~~~windows~~
7-zip 7-zip 9.06 cpe:/a:7-zip:7-zip:9.06:beta:~~~windows~~
7-zip 7-zip 9.07 cpe:/a:7-zip:7-zip:9.07:beta:~~~windows~~
7-zip 7-zip 9.09 cpe:/a:7-zip:7-zip:9.09:beta
7-zip 7-zip 9.09 cpe:/a:7-zip:7-zip:9.09:beta:~~~windows~~
7-zip 7-zip 9.10 cpe:/a:7-zip:7-zip:9.10:beta:~~~windows~~
7-zip 7-zip 9.11 cpe:/a:7-zip:7-zip:9.11
7-zip 7-zip 9.11 cpe:/a:7-zip:7-zip:9.11::~~~windows~~
7-zip 7-zip 9.12 cpe:/a:7-zip:7-zip:9.12
7-zip 7-zip 9.12 cpe:/a:7-zip:7-zip:9.12::~~~windows~~
7-zip 7-zip 9.13 cpe:/a:7-zip:7-zip:9.13
7-zip 7-zip 9.13 cpe:/a:7-zip:7-zip:9.13::~~~windows~~
7-zip 7-zip 9.14 cpe:/a:7-zip:7-zip:9.14
7-zip 7-zip 9.14 cpe:/a:7-zip:7-zip:9.14::~~~windows~~
7-zip 7-zip 9.15 cpe:/a:7-zip:7-zip:9.15
7-zip 7-zip 9.15 cpe:/a:7-zip:7-zip:9.15::~~~windows~~
7-zip 7-zip 9.16 cpe:/a:7-zip:7-zip:9.16
7-zip 7-zip 9.16 cpe:/a:7-zip:7-zip:9.16::~~~windows~~
7-zip 7-zip 9.17 cpe:/a:7-zip:7-zip:9.17
7-zip 7-zip 9.17 cpe:/a:7-zip:7-zip:9.17::~~~windows~~
7-zip 7-zip 9.18 cpe:/a:7-zip:7-zip:9.18
7-zip 7-zip 9.18 cpe:/a:7-zip:7-zip:9.18::~~~windows~~
7-zip 7-zip 9.19 cpe:/a:7-zip:7-zip:9.19
7-zip 7-zip 9.19 cpe:/a:7-zip:7-zip:9.19::~~~windows~~
7-zip 7-zip 9.20 cpe:/a:7-zip:7-zip:9.20::~~~windows~~
7-zip 7-zip 9.21 cpe:/a:7-zip:7-zip:9.21
7-zip 7-zip 9.21 cpe:/a:7-zip:7-zip:9.21::~~~windows~~
7-zip 7-zip 9.22 cpe:/a:7-zip:7-zip:9.22
7-zip 7-zip 9.22 cpe:/a:7-zip:7-zip:9.22::~~~windows~~
7-zip 7-zip 9.34 cpe:/a:7-zip:7-zip:9.34
7-zip 7-zip 9.34 cpe:/a:7-zip:7-zip:9.34::~~~windows~~
7-zip 7-zip 9.35 cpe:/a:7-zip:7-zip:9.35
7-zip 7-zip 9.35 cpe:/a:7-zip:7-zip:9.35::~~~windows~~
7-zip 7-zip 9.36 cpe:/a:7-zip:7-zip:9.36
7-zip 7-zip 9.36 cpe:/a:7-zip:7-zip:9.36::~~~windows~~
7-zip 7-zip 9.38 cpe:/a:7-zip:7-zip:9.38
7-zip 7-zip 9.38 cpe:/a:7-zip:7-zip:9.38::~~~windows~~
7-zip 7-zip 15.05 cpe:/a:7-zip:7-zip:15.05
7-zip 7-zip 15.05 cpe:/a:7-zip:7-zip:15.05::~~~windows~~
7-zip 7-zip 15.05 cpe:/a:7-zip:7-zip:15.05:beta
7-zip 7-zip 15.06 cpe:/a:7-zip:7-zip:15.06
7-zip 7-zip 15.06 cpe:/a:7-zip:7-zip:15.06::~~~windows~~
7-zip 7-zip 15.07 cpe:/a:7-zip:7-zip:15.07
7-zip 7-zip 15.07 cpe:/a:7-zip:7-zip:15.07::~~~windows~~
7-zip 7-zip 15.08 cpe:/a:7-zip:7-zip:15.08
7-zip 7-zip 15.08 cpe:/a:7-zip:7-zip:15.08::~~~windows~~
7-zip 7-zip 15.09 cpe:/a:7-zip:7-zip:15.09
7-zip 7-zip 15.09 cpe:/a:7-zip:7-zip:15.09::~~~windows~~
7-zip 7-zip 15.10 cpe:/a:7-zip:7-zip:15.10
7-zip 7-zip 15.10 cpe:/a:7-zip:7-zip:15.10::~~~windows~~
7-zip 7-zip 15.11 cpe:/a:7-zip:7-zip:15.11
7-zip 7-zip 15.11 cpe:/a:7-zip:7-zip:15.11::~~~windows~~
7-zip 7-zip 15.12 cpe:/a:7-zip:7-zip:15.12
7-zip 7-zip 15.12 cpe:/a:7-zip:7-zip:15.12::~~~windows~~
7-zip 7-zip 15.13 cpe:/a:7-zip:7-zip:15.13
7-zip 7-zip 15.13 cpe:/a:7-zip:7-zip:15.13::~~~windows~~
7-zip 7-zip 15.14 cpe:/a:7-zip:7-zip:15.14::~~~windows~~
7-zip 7-zip 16.00 cpe:/a:7-zip:7-zip:16.00
7-zip 7-zip 16.00 cpe:/a:7-zip:7-zip:16.00::~~~windows~~
7-zip 7-zip 16.01 cpe:/a:7-zip:7-zip:16.01
7-zip 7-zip 16.01 cpe:/a:7-zip:7-zip:16.01::~~~windows~~
7-zip 7-zip 16.02 cpe:/a:7-zip:7-zip:16.02
7-zip 7-zip 16.02 cpe:/a:7-zip:7-zip:16.02::~~~windows~~
7-zip 7-zip 16.03 cpe:/a:7-zip:7-zip:16.03
7-zip 7-zip 16.03 cpe:/a:7-zip:7-zip:16.03::~~~windows~~
7-zip 7-zip 16.04 cpe:/a:7-zip:7-zip:16.04
7-zip 7-zip 16.04 cpe:/a:7-zip:7-zip:16.04::~~~windows~~
7-zip 7-zip 17.00 cpe:/a:7-zip:7-zip:17.00
7-zip 7-zip 17.00 cpe:/a:7-zip:7-zip:17.00::~~~windows~~
7-zip 7-zip 17.01 cpe:/a:7-zip:7-zip:17.01
7-zip 7-zip 17.01 cpe:/a:7-zip:7-zip:17.01::~~~windows~~
  1. 7-zip (2) Search CVE
    1. P7zip (35) Search CVE
      1. 0.80
      2. 0.81
      3. 0.90
      4. 0.91
      5. 4.10
      6. 4.12
      7. 4.13
      8. 4.14
      9. 4.14.01
      10. 4.16
      11. 4.18
      12. 4.20
      13. 4.27
      14. 4.29
      15. 4.30
      16. 4.33
      17. 4.37
      18. 4.39
      19. 4.42
      20. 4.43
      21. 4.44
      22. 4.45
      23. 4.47
      24. 4.48
      25. 4.49
      26. 4.51
      27. 4.53
      28. 4.55
      29. 4.57
      30. 4.58
      31. 4.61
      32. 4.65
      33. 9.04
      34. 9.20.1
      35. 16.02
    2. 7-zip (83) Search CVE
      1. 3.13
      2. 4.20
      3. 4.23
      4. 4.24
      5. 4.25
      6. 4.26
      7. 4.27
      8. 4.28
      9. 4.29
      10. 4.30
      11. 4.31
      12. 4.32
      13. 4.33
      14. 4.34
      15. 4.35
      16. 4.36
      17. 4.37
      18. 4.38
      19. 4.39
      20. 4.40
      21. 4.41
      22. 4.42
      23. 4.43
      24. 4.44
      25. 4.45
      26. 4.46
      27. 4.47
      28. 4.48
      29. 4.49
      30. 4.50
      31. 4.51
      32. 4.52
      33. 4.53
      34. 4.54
      35. 4.55
      36. 4.56
      37. 4.57
      38. 4.58
      39. 4.59
      40. 4.60
      41. 4.61
      42. 4.62
      43. 4.63
      44. 4.64
      45. 4.65
      46. 9.04
      47. 9.06
      48. 9.07
      49. 9.10
      50. 9.11
      51. 9.12
      52. 9.13
      53. 9.20
      54. 9.22
      55. 15.14
      56. 9.09
      57. 9.14
      58. 9.15
      59. 9.16
      60. 9.17
      61. 9.18
      62. 9.19
      63. 9.21
      64. 9.34
      65. 9.35
      66. 9.36
      67. 9.38
      68. 15.05
      69. 15.06
      70. 15.07
      71. 15.08
      72. 15.09
      73. 15.10
      74. 15.11
      75. 15.12
      76. 15.13
      77. 16.00
      78. 16.01
      79. 16.02
      80. 16.03
      81. 16.04
      82. 17.00
      83. 17.01
  2. Debian (1) Search CVE
    1. Debian Linux (3) Search CVE
      1. 7.0
      2. 8.0
      3. 9.0

CWE

ID Name Description Links
CWE-787 Out-of-bounds Write The software writes data past the end, or before the beginning, of the intended buffer. CVE

History of changes

Date Event
2019-03-21 20:29
2018-05-20 01:29
2018-03-01 02:29
2018-02-15 13:27
2018-02-06 02:29
2018-02-04 02:29
2018-01-30 16:29

New CVE