New Search

Bzip2 Bug Lets Remote Users Deny Service

oval:org.mitre.oval:def:6467

bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file that triggers a buffer over-read as demonstrated by the PROTOS GENOME test suite for Archive Formats.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • VMWare ESX Server 3.5
  • VMWare ESX Server 3
Class:
vulnerability
Reference(s):
  • CVE-2008-1372
Product(s):