CVE - CVE-2006-4335

CVE-ID
CVE-2006-4335	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GZIP archive that triggers an out-of-bounds write, aka a "stack modification vulnerability."
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:1016883 URL:http://securitytracker.com/id?1016883 MISC:102766 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-102766-1~~ (Obsolete source) MISC:2006-0052 URL:~~http://www.trustix.org/errata/2006/0052/~~ (Obsolete source - check if archived by the Wayback Machine) MISC:20060919 rPSA-2006-0170-1 gzip URL:http://www.securityfocus.com/archive/1/446426/100/0/threaded MISC:20061001-01-P URL:ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc MISC:20070330 VMSA-2007-0002 VMware ESX security updates URL:http://www.securityfocus.com/archive/1/464268/100/0/threaded MISC:20101 URL:http://www.securityfocus.com/bid/20101 MISC:21996 URL:http://secunia.com/advisories/21996 MISC:22002 URL:http://secunia.com/advisories/22002 MISC:22009 URL:http://secunia.com/advisories/22009 MISC:22012 URL:http://secunia.com/advisories/22012 MISC:22017 URL:http://secunia.com/advisories/22017 MISC:22027 URL:http://secunia.com/advisories/22027 MISC:22033 URL:http://secunia.com/advisories/22033 MISC:22034 URL:http://secunia.com/advisories/22034 MISC:22043 URL:http://secunia.com/advisories/22043 MISC:22085 URL:http://secunia.com/advisories/22085 MISC:22101 URL:http://secunia.com/advisories/22101 MISC:22435 URL:http://secunia.com/advisories/22435 MISC:22487 URL:http://secunia.com/advisories/22487 MISC:22661 URL:http://secunia.com/advisories/22661 MISC:23153 URL:http://secunia.com/advisories/23153 MISC:23155 URL:http://secunia.com/advisories/23155 MISC:23156 URL:http://secunia.com/advisories/23156 MISC:23679 URL:http://secunia.com/advisories/23679 MISC:24435 URL:http://secunia.com/advisories/24435 MISC:24636 URL:http://secunia.com/advisories/24636 MISC:ADV-2006-3695 URL:~~http://www.vupen.com/english/advisories/2006/3695~~ (Obsolete source) MISC:ADV-2006-4275 URL:~~http://www.vupen.com/english/advisories/2006/4275~~ (Obsolete source) MISC:ADV-2006-4750 URL:~~http://www.vupen.com/english/advisories/2006/4750~~ (Obsolete source) MISC:ADV-2006-4760 URL:~~http://www.vupen.com/english/advisories/2006/4760~~ (Obsolete source) MISC:ADV-2007-0092 URL:~~http://www.vupen.com/english/advisories/2007/0092~~ (Obsolete source) MISC:ADV-2007-0832 URL:~~http://www.vupen.com/english/advisories/2007/0832~~ (Obsolete source) MISC:ADV-2007-1171 URL:~~http://www.vupen.com/english/advisories/2007/1171~~ (Obsolete source) MISC:APPLE-SA-2006-11-28 URL:http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html MISC:DSA-1181 URL:http://www.us.debian.org/security/2006/dsa-1181 MISC:FLSA:211760 URL:http://www.securityfocus.com/archive/1/451324/100/0/threaded MISC:FreeBSD-SA-06:21 URL:http://security.freebsd.org/advisories/FreeBSD-SA-06:21.gzip.asc MISC:GLSA-200609-13 URL:http://security.gentoo.org/glsa/glsa-200609-13.xml MISC:GLSA-200611-24 URL:http://www.gentoo.org/security/en/glsa/glsa-200611-24.xml MISC:HPSBTU02168 URL:http://www.securityfocus.com/archive/1/450078/100/0/threaded MISC:HPSBUX02195 URL:http://www.securityfocus.com/archive/1/462007/100/0/threaded MISC:MDKSA-2006:167 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:167~~ (Obsolete source) MISC:OpenPKG-SA-2006.020 URL:http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.020-gzip.html MISC:RHSA-2006:0667 URL:http://www.redhat.com/support/errata/RHSA-2006-0667.html MISC:SSA:2006-262 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.555852 MISC:SSRT061237 URL:http://www.securityfocus.com/archive/1/450078/100/0/threaded MISC:SUSE-SA:2006:056 URL:http://www.novell.com/linux/security/advisories/2006_56_gzip.html MISC:TA06-333A URL:http://www.us-cert.gov/cas/techalerts/TA06-333A.html MISC:USN-349-1 URL:http://www.ubuntu.com/usn/usn-349-1 MISC:VU#381508 URL:http://www.kb.cert.org/vuls/id/381508 MISC:gzip-lzh-array-code-execution(29040) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/29040 MISC:http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=204676 URL:http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=204676 MISC:http://docs.info.apple.com/article.html?artnum=304829 URL:http://docs.info.apple.com/article.html?artnum=304829 MISC:http://support.avaya.com/elmodocs2/security/ASA-2006-218.htm URL:http://support.avaya.com/elmodocs2/security/ASA-2006-218.htm MISC:http://www.vmware.com/support/esx25/doc/esx-254-200702-patch.html URL:http://www.vmware.com/support/esx25/doc/esx-254-200702-patch.html MISC:https://issues.rpath.com/browse/RPL-615 URL:https://issues.rpath.com/browse/RPL-615 MISC:oval:org.mitre.oval:def:10391 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10391
Assigning CNA
Red Hat, Inc.
Date Record Created
20060824	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20060824)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)