Remote Code Execution Vulnerability in Libarchive for 7zip File Processing
CVE-2016-4300

7.8HIGH

Key Information:

Vendor

Libarchive

Status
Libarchive
Vendor
CVE Published:
21 September 2016

What is CVE-2016-4300?

The libarchive library, which is utilized in handling compressed file formats, contains an integer overflow vulnerability in the read_SubStreamsInfo function. This flaw exists in versions prior to 3.2.1 and can be exploited by remote attackers using specially crafted 7zip files that include a large number of substreams. The exploitation can lead to a heap-based buffer overflow, potentially allowing adversaries to execute arbitrary code on affected systems. It is crucial for users to update to the latest version to safeguard against these threats.

References

http://rhn.redhat.com/errata/RHSA-2016-1844.html
vendor-advisoryx_refsource_REDHAT
http://www.oracle.com/technetwork/topics/security/linuxbu...
x_refsource_CONFIRM
http://blog.talosintel.com/2016/06/the-poisoned-archives....
x_refsource_MISC

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.