7-Zip: Multiple Memory Corruptions via RAR and ZIP

Talk about internet security, computer security, personal security, your social security number...
Post Reply
morganism
Senior Member
Posts: 116
Joined: Tue Nov 26, 2013 9:44 pm

7-Zip: Multiple Memory Corruptions via RAR and ZIP

Post by morganism » Wed Jan 24, 2018 7:31 pm

In the following, I will outline two bugs that affect 7-Zip before version 18.00 as well as p7zip. The first one (RAR PPMd) is the more critical and the more involved one. The second one (ZIP Shrink) seems to be less critical, but also much easier to understand.

https://landave.io/2018/01/7-zip-multip ... nd-zip/?hn

"Finally, note that the attacker can overflow the stack buffer with pointers to data that is highly attacker controlled itself."
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:23.0) Gecko/20130410 Firefox/23.0

Post Reply