CVE-2005-2096
- EPSS 43.03%
- Veröffentlicht 06.07.2005 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted...
CVE-2004-0797
- EPSS 2.11%
- Veröffentlicht 20.10.2004 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The error handling in the (1) inflate and (2) inflateBack functions in ZLib compression library 1.2.x allows local users to cause a denial of service (application crash).
CVE-2003-0107
- EPSS 35.64%
- Veröffentlicht 07.03.2003 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Buffer overflow in the gzprintf function in zlib 1.1.4, when zlib is compiled without vsnprintf or when long inputs are truncated using vsnprintf, allows attackers to cause a denial of service or possibly execute arbitrary code.
CVE-2002-0059
- EPSS 28.58%
- Veröffentlicht 15.03.2002 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow local and remote attackers to execute arbitrary cod...