CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-5196

Alzip 10.76.0.0 and earlier is vulnerable to a stack overflow caused by improper bounds checking. By persuading a victim to open a specially-crafted LZH archive file, a attacker could execute arbitrary code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.8%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://www.altools.co.kr/Support/Notice_Contents.aspx?idx=1677&page=2&t=
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=27688
https://www.altools.co.kr/Support/Notice_Contents.aspx?idx=1677&page=2&t=
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=27688

Products affected by CVE-2018-5196

Estsoft » Alzip » Version: 10.76.0.0

cpe:2.3:a:estsoft:alzip:10.76.0.0
Estsoft » Alzip » Version: 8.5.1

cpe:2.3:a:estsoft:alzip:8.5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-5196

Products

Pricing

Contact Us