unzip -t crasher

114   2019-08-05 08:08   nipc
漏洞信息
漏洞编号: 1320
CVE编号:
漏洞类型: -
漏洞来源: cxs
发布日期: 2014-11-03
CVSS
CVSS值: -
严重级别: 低危
利用范围: -
攻击复杂度: -
认证级别: -
漏洞描述

WLB-2014110007[***]http://cxsecurity.com/issue/WLB-2014110007[***]Bug: unzip -t crasher ( Ascii Version )[***]unzip -t crasher[***]2014.11.03[***]lcamtuf[***]Low[***]N/A [***]N/A ( Add )@@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** </form>[***]Yes[***]No[***][***][***][***][***][***][***][***][***] Latest American fuzzy lop[0] tarball[1] contains a zip file that crashes unzip -t:@@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** @@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** @@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** $ unzip -qt afl-0.43b/docs/samples/unzip_t_malloc.zip@@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** foo/: mismatching "local" filename (???/UT),@@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** continuing with "central" filename version@@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** *** Error in `unzip': free(): corrupted unsorted chunks: 0x00000000015d0170 ***@@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** @@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** I'm not sure if inclusion of said zip file was intentional, but since the cat is already out of the bag, I thought I'll@@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** let you know.@@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** @@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** @@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** [0] https://code.google.com/p/american-fuzzy-lop/@@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** [1] http://lcamtuf.coredump.cx/afl.tgz@@@@@@@@@@$$$$$$$$$$&&&&&&&&&&##########suijishu0518893******** [***]http://lcamtuf.coredump.cx/afl.tgz[*]http://seclists.org/oss-sec/2014/q4/489

POC

Latest American fuzzy lop[0] tarball[1] contains a zip file that crashes unzip -t: $ unzip -qt afl-0.43b/docs/samples/unzip_t_malloc.zip foo/: mismatching "local" filename (???/UT), continuing with "central" filename version *** Error in `unzip': free(): corrupted unsorted chunks: 0x00000000015d0170 *** I'm not sure if inclusion of said zip file was intentional, but since the cat is already out of the bag, I thought I'll let you know. [0] https://code.google.com/p/american-fuzzy-lop/ [1] http://lcamtuf.coredump.cx/afl.tgz