- EPSS 8.68%
- Published 19.09.2006 21:07:00
- Last modified 03.04.2025 01:03:51
Unspecified vulnerability in gzip 1.3.5 allows context-dependent attackers to cause a denial of service (crash) via a crafted GZIP (gz) archive, which results in a NULL dereference.
CVE-2006-4335
- EPSS 2.04%
- Published 19.09.2006 21:07:00
- Last modified 03.04.2025 01:03:51
Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code v...
CVE-2006-4336
- EPSS 4.65%
- Published 19.09.2006 21:07:00
- Last modified 03.04.2025 01:03:51
Buffer underflow in the build_tree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted leaf count table that causes a write to a negative index.
CVE-2006-4337
- EPSS 4.17%
- Published 19.09.2006 21:07:00
- Last modified 03.04.2025 01:03:51
Buffer overflow in the make_table function in the LHZ component in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted decoding table in a GZIP archive.
- EPSS 6.39%
- Published 19.09.2006 21:07:00
- Last modified 03.04.2025 01:03:51
unlzh.c in the LHZ component in gzip 1.3.5 allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted GZIP archive.