- EPSS 3.9%
- Veröffentlicht 19.09.2006 21:07:00
- Zuletzt bearbeitet 16.06.2026 22:28:52
Unspecified vulnerability in gzip 1.3.5 allows context-dependent attackers to cause a denial of service (crash) via a crafted GZIP (gz) archive, which results in a NULL dereference.
CVE-2006-4335
- EPSS 5.48%
- Veröffentlicht 19.09.2006 21:07:00
- Zuletzt bearbeitet 16.06.2026 22:28:52
Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code v...
CVE-2006-4336
- EPSS 5.51%
- Veröffentlicht 19.09.2006 21:07:00
- Zuletzt bearbeitet 16.06.2026 22:28:53
Buffer underflow in the build_tree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted leaf count table that causes a write to a negative index.
CVE-2006-4337
- EPSS 5.64%
- Veröffentlicht 19.09.2006 21:07:00
- Zuletzt bearbeitet 16.06.2026 22:28:53
Buffer overflow in the make_table function in the LHZ component in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted decoding table in a GZIP archive.
- EPSS 3.61%
- Veröffentlicht 19.09.2006 21:07:00
- Zuletzt bearbeitet 16.06.2026 22:28:53
unlzh.c in the LHZ component in gzip 1.3.5 allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted GZIP archive.