CVE-2018-5996

Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code, allows remote attackers to cause a denial of service (segmentation fault) or execute arbitrary code via a crafted RAR archive.

Published : 2018-01-31 18:29 Updated : 2018-05-20 01:29

6.8
CVSS Score More info
Score 6.8 / 10
6.8
Vendor Product Version URI
7-zip 7-zip 3.13 cpe:/a:7-zip:7-zip:3.13
7-zip 7-zip 4.20 cpe:/a:7-zip:7-zip:4.20
7-zip 7-zip 4.23 cpe:/a:7-zip:7-zip:4.23
7-zip 7-zip 4.24 cpe:/a:7-zip:7-zip:4.24:beta
7-zip 7-zip 4.25 cpe:/a:7-zip:7-zip:4.25:beta
7-zip 7-zip 4.26 cpe:/a:7-zip:7-zip:4.26:beta
7-zip 7-zip 4.27 cpe:/a:7-zip:7-zip:4.27:beta
7-zip 7-zip 4.28 cpe:/a:7-zip:7-zip:4.28:beta
7-zip 7-zip 4.29 cpe:/a:7-zip:7-zip:4.29:beta
7-zip 7-zip 4.30 cpe:/a:7-zip:7-zip:4.30:beta
7-zip 7-zip 4.31 cpe:/a:7-zip:7-zip:4.31
7-zip 7-zip 4.32 cpe:/a:7-zip:7-zip:4.32
7-zip 7-zip 4.33 cpe:/a:7-zip:7-zip:4.33:beta
7-zip 7-zip 4.34 cpe:/a:7-zip:7-zip:4.34:beta
7-zip 7-zip 4.35 cpe:/a:7-zip:7-zip:4.35:beta
7-zip 7-zip 4.36 cpe:/a:7-zip:7-zip:4.36:beta
7-zip 7-zip 4.37 cpe:/a:7-zip:7-zip:4.37:beta
7-zip 7-zip 4.38 cpe:/a:7-zip:7-zip:4.38:beta
7-zip 7-zip 4.39 cpe:/a:7-zip:7-zip:4.39:beta
7-zip 7-zip 4.40 cpe:/a:7-zip:7-zip:4.40:beta
7-zip 7-zip 4.41 cpe:/a:7-zip:7-zip:4.41:beta
7-zip 7-zip 4.42 cpe:/a:7-zip:7-zip:4.42
7-zip 7-zip 4.43 cpe:/a:7-zip:7-zip:4.43:beta
7-zip 7-zip 4.44 cpe:/a:7-zip:7-zip:4.44:beta
7-zip 7-zip 4.45 cpe:/a:7-zip:7-zip:4.45:beta
7-zip 7-zip 4.46 cpe:/a:7-zip:7-zip:4.46:beta
7-zip 7-zip 4.47 cpe:/a:7-zip:7-zip:4.47:beta
7-zip 7-zip 4.48 cpe:/a:7-zip:7-zip:4.48:beta
7-zip 7-zip 4.49 cpe:/a:7-zip:7-zip:4.49:beta
7-zip 7-zip 4.50 cpe:/a:7-zip:7-zip:4.50:beta
7-zip 7-zip 4.51 cpe:/a:7-zip:7-zip:4.51:beta
7-zip 7-zip 4.52 cpe:/a:7-zip:7-zip:4.52:beta
7-zip 7-zip 4.53 cpe:/a:7-zip:7-zip:4.53:beta
7-zip 7-zip 4.54 cpe:/a:7-zip:7-zip:4.54:beta
7-zip 7-zip 4.55 cpe:/a:7-zip:7-zip:4.55:beta
7-zip 7-zip 4.56 cpe:/a:7-zip:7-zip:4.56:beta
7-zip 7-zip 4.57 cpe:/a:7-zip:7-zip:4.57
7-zip 7-zip 4.58 cpe:/a:7-zip:7-zip:4.58:beta
7-zip 7-zip 4.59 cpe:/a:7-zip:7-zip:4.59:beta
7-zip 7-zip 4.60 cpe:/a:7-zip:7-zip:4.60:beta
7-zip 7-zip 4.61 cpe:/a:7-zip:7-zip:4.61:beta
7-zip 7-zip 4.62 cpe:/a:7-zip:7-zip:4.62
7-zip 7-zip 4.63 cpe:/a:7-zip:7-zip:4.63
7-zip 7-zip 4.64 cpe:/a:7-zip:7-zip:4.64
7-zip 7-zip 4.65 cpe:/a:7-zip:7-zip:4.65
7-zip 7-zip 4.65 cpe:/a:7-zip:7-zip:4.65::~~~~x64~
7-zip 7-zip 9.04 cpe:/a:7-zip:7-zip:9.04:beta
7-zip 7-zip 9.06 cpe:/a:7-zip:7-zip:9.06:beta
7-zip 7-zip 9.07 cpe:/a:7-zip:7-zip:9.07:beta
7-zip 7-zip 9.10 cpe:/a:7-zip:7-zip:9.10:beta
7-zip 7-zip 9.11 cpe:/a:7-zip:7-zip:9.11:beta
7-zip 7-zip 9.12 cpe:/a:7-zip:7-zip:9.12:beta
7-zip 7-zip 9.13 cpe:/a:7-zip:7-zip:9.13:beta
7-zip 7-zip 9.20 cpe:/a:7-zip:7-zip:9.20
7-zip 7-zip 9.20 cpe:/a:7-zip:7-zip:9.20::~~~~x64~
7-zip 7-zip 9.22 cpe:/a:7-zip:7-zip:9.22:beta
7-zip 7-zip 15.14 cpe:/a:7-zip:7-zip:15.14
7-zip P7zip 0.80 cpe:/a:7-zip:p7zip:0.80
7-zip P7zip 0.81 cpe:/a:7-zip:p7zip:0.81
7-zip P7zip 0.90 cpe:/a:7-zip:p7zip:0.90
7-zip P7zip 0.91 cpe:/a:7-zip:p7zip:0.91
7-zip P7zip 4.10 cpe:/a:7-zip:p7zip:4.10
7-zip P7zip 4.12 cpe:/a:7-zip:p7zip:4.12
7-zip P7zip 4.13 cpe:/a:7-zip:p7zip:4.13
7-zip P7zip 4.14 cpe:/a:7-zip:p7zip:4.14
7-zip P7zip 4.14.01 cpe:/a:7-zip:p7zip:4.14.01
7-zip P7zip 4.16 cpe:/a:7-zip:p7zip:4.16
7-zip P7zip 4.18 cpe:/a:7-zip:p7zip:4.18
7-zip P7zip 4.20 cpe:/a:7-zip:p7zip:4.20
7-zip P7zip 4.27 cpe:/a:7-zip:p7zip:4.27
7-zip P7zip 4.29 cpe:/a:7-zip:p7zip:4.29
7-zip P7zip 4.30 cpe:/a:7-zip:p7zip:4.30
7-zip P7zip 4.33 cpe:/a:7-zip:p7zip:4.33
7-zip P7zip 4.37 cpe:/a:7-zip:p7zip:4.37
7-zip P7zip 4.39 cpe:/a:7-zip:p7zip:4.39
7-zip P7zip 4.42 cpe:/a:7-zip:p7zip:4.42
7-zip P7zip 4.43 cpe:/a:7-zip:p7zip:4.43
7-zip P7zip 4.44 cpe:/a:7-zip:p7zip:4.44
7-zip P7zip 4.45 cpe:/a:7-zip:p7zip:4.45
7-zip P7zip 4.47 cpe:/a:7-zip:p7zip:4.47
7-zip P7zip 4.48 cpe:/a:7-zip:p7zip:4.48
7-zip P7zip 4.49 cpe:/a:7-zip:p7zip:4.49
7-zip P7zip 4.51 cpe:/a:7-zip:p7zip:4.51
7-zip P7zip 4.53 cpe:/a:7-zip:p7zip:4.53
7-zip P7zip 4.55 cpe:/a:7-zip:p7zip:4.55
7-zip P7zip 4.57 cpe:/a:7-zip:p7zip:4.57
7-zip P7zip 4.58 cpe:/a:7-zip:p7zip:4.58
7-zip P7zip 4.61 cpe:/a:7-zip:p7zip:4.61
7-zip P7zip 4.65 cpe:/a:7-zip:p7zip:4.65
7-zip P7zip 9.04 cpe:/a:7-zip:p7zip:9.04
7-zip P7zip 9.20.1 cpe:/a:7-zip:p7zip:9.20.1
7-zip P7zip 16.02 cpe:/a:7-zip:p7zip:16.02
Debian Debian Linux 7.0 cpe:/o:debian:debian_linux:7.0
Debian Debian Linux 8.0 cpe:/o:debian:debian_linux:8.0
Debian Debian Linux 9.0 cpe:/o:debian:debian_linux:9.0
  1. 7-zip (2) Search CVE
    1. P7zip (35) Search CVE
      1. 0.80
      2. 0.81
      3. 0.90
      4. 0.91
      5. 4.10
      6. 4.12
      7. 4.13
      8. 4.14
      9. 4.14.01
      10. 4.16
      11. 4.18
      12. 4.20
      13. 4.27
      14. 4.29
      15. 4.30
      16. 4.33
      17. 4.37
      18. 4.39
      19. 4.42
      20. 4.43
      21. 4.44
      22. 4.45
      23. 4.47
      24. 4.48
      25. 4.49
      26. 4.51
      27. 4.53
      28. 4.55
      29. 4.57
      30. 4.58
      31. 4.61
      32. 4.65
      33. 9.04
      34. 9.20.1
      35. 16.02
    2. 7-zip (55) Search CVE
      1. 3.13
      2. 4.20
      3. 4.23
      4. 4.24
      5. 4.25
      6. 4.26
      7. 4.27
      8. 4.28
      9. 4.29
      10. 4.30
      11. 4.31
      12. 4.32
      13. 4.33
      14. 4.34
      15. 4.35
      16. 4.36
      17. 4.37
      18. 4.38
      19. 4.39
      20. 4.40
      21. 4.41
      22. 4.42
      23. 4.43
      24. 4.44
      25. 4.45
      26. 4.46
      27. 4.47
      28. 4.48
      29. 4.49
      30. 4.50
      31. 4.51
      32. 4.52
      33. 4.53
      34. 4.54
      35. 4.55
      36. 4.56
      37. 4.57
      38. 4.58
      39. 4.59
      40. 4.60
      41. 4.61
      42. 4.62
      43. 4.63
      44. 4.64
      45. 4.65
      46. 9.04
      47. 9.06
      48. 9.07
      49. 9.10
      50. 9.11
      51. 9.12
      52. 9.13
      53. 9.20
      54. 9.22
      55. 15.14
  2. Debian (1) Search CVE
    1. Debian Linux (3) Search CVE
      1. 7.0
      2. 8.0
      3. 9.0

CWE

ID Name Description Links
CWE-388 Error Handling This category includes weaknesses that occur when an application does not properly handle errors that occur during processing. CVE

History of changes

Date Event
2018-05-20 01:29
2018-03-01 02:29
2018-02-15 16:19
2018-01-31 18:29

New CVE