Buffer Overflow Vulnerability in Gzip by Info-ZIP Software
CVE-2001-1228

Currently unrated

Key Information:

Vendor
Gnu
Status
Vendor
CVE Published:
18 November 2001

Summary

Gzip versions 1.3x and 1.2.4 possess a buffer overflow vulnerability that could be exploited by attackers through the use of excessively long file names. This flaw may enable the execution of arbitrary code on systems where Gzip operates, particularly if it is utilized on an FTP server. Proper precautions and updates should be implemented to mitigate this risk.

References

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.