CVE-2018-5196 - OpenCVE

Alzip 10.76.0.0 and earlier is vulnerable to a stack overflow caused by improper bounds checking. By persuading a victim to open a specially-crafted LZH archive file, a attacker could execute arbitrary code execution.

No CVSS v3.1

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Estsoft	Alzip

Configuration 1 [-]

cpe:2.3:a:estsoft:alzip:*:*:*:*:*:windows:*:*

References

Link	Resource
https://www.altools.co.kr/Support/Notice_Contents.aspx?idx=1677&page=2&t=	Vendor Advisory
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=27688	Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: krcert

Published: 2018-10-16T00:00:00

Updated: 2018-12-21T14:57:01

Reserved: 2018-01-03T00:00:00

Link: CVE-2018-5196

JSON object: View

NVD Information

Status : Modified

Published: 2018-12-21T15:29:00.453

Modified: 2020-08-24T17:37:01.140

Link: CVE-2018-5196

JSON object: View

Redhat Information

No data.

CWE

CWE-787

{"containers": {"cna": {"affected": [{"platforms": ["x86, x64"], "product": "Alzip", "vendor": "Estsoft", "versions": [{"lessThanOrEqual": "10.76.0.0", "status": "affected", "version": "Alzip", "versionType": "custom"}]}], "datePublic": "2018-10-16T00:00:00", "descriptions": [{"lang": "en", "value": "Alzip 10.76.0.0 and earlier is vulnerable to a stack overflow caused by improper bounds checking. By persuading a victim to open a specially-crafted LZH archive file, a attacker could execute arbitrary code execution."}], "metrics": [{"cvssV3_0": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}}], "problemTypes": [{"descriptions": [{"description": "Stack based overflow", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-12-21T14:57:01", "orgId": "cdd7a122-0fae-4202-8d86-14efbacc2863", "shortName": "krcert"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=27688"}, {"tags": ["x_refsource_MISC"], "url": "https://www.altools.co.kr/Support/Notice_Contents.aspx?idx=1677&page=2&t="}], "solutions": [{"lang": "en", "value": "Update software over 10.81 version or over then it."}], "source": {"discovery": "UNKNOWN"}, "title": "Alzip Stack Overflow Vulnerability", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "vuln@krcert.or.kr", "DATE_PUBLIC": "2018-10-16T08:30:00.000Z", "ID": "CVE-2018-5196", "STATE": "PUBLIC", "TITLE": "Alzip Stack Overflow Vulnerability"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Alzip", "version": {"version_data": [{"affected": "<=", "platform": "x86, x64", "version_affected": "<=", "version_name": "Alzip", "version_value": "10.76.0.0"}]}}]}, "vendor_name": "Estsoft"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Alzip 10.76.0.0 and earlier is vulnerable to a stack overflow caused by improper bounds checking. By persuading a victim to open a specially-crafted LZH archive file, a attacker could execute arbitrary code execution."}]}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Stack based overflow"}]}]}, "references": {"reference_data": [{"name": "https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=27688", "refsource": "MISC", "url": "https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=27688"}, {"name": "https://www.altools.co.kr/Support/Notice_Contents.aspx?idx=1677&page=2&t=", "refsource": "MISC", "url": "https://www.altools.co.kr/Support/Notice_Contents.aspx?idx=1677&page=2&t="}]}, "solution": [{"lang": "en", "value": "Update software over 10.81 version or over then it."}], "source": {"discovery": "UNKNOWN"}}}}, "cveMetadata": {"assignerOrgId": "cdd7a122-0fae-4202-8d86-14efbacc2863", "assignerShortName": "krcert", "cveId": "CVE-2018-5196", "datePublished": "2018-10-16T00:00:00", "dateReserved": "2018-01-03T00:00:00", "dateUpdated": "2018-12-21T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:estsoft:alzip:*:*:*:*:*:windows:*:*", "matchCriteriaId": "D1D98199-8E52-4738-AE0A-BBFE5896F1FA", "versionEndIncluding": "10.76.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Alzip 10.76.0.0 and earlier is vulnerable to a stack overflow caused by improper bounds checking. By persuading a victim to open a specially-crafted LZH archive file, a attacker could execute arbitrary code execution."}, {"lang": "es", "value": "Alzip, en versiones 10.76.0.0 y anteriores, es vulnerable a un desbordamiento de pila provocado por una comprobaci\u00f3n de l\u00edmites incorrecta. Al convencer a una v\u00edctima para que abra un archivo LZH especialmente manipulado, un atacante podr\u00eda ejecutar c\u00f3digo arbitrario."}], "id": "CVE-2018-5196", "lastModified": "2020-08-24T17:37:01.140", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "vuln@krcert.or.kr", "type": "Secondary"}]}, "published": "2018-12-21T15:29:00.453", "references": [{"source": "vuln@krcert.or.kr", "tags": ["Vendor Advisory"], "url": "https://www.altools.co.kr/Support/Notice_Contents.aspx?idx=1677&page=2&t="}, {"source": "vuln@krcert.or.kr", "tags": ["Third Party Advisory"], "url": "https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=27688"}], "sourceIdentifier": "vuln@krcert.or.kr", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}]}