N/A

UnEGG v0.5 and eariler versions have a Integer overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by UnEGG. Attackers could exploit this and arbitrary code execution. This issue affects: Estsoft UnEGG 0.5 versions prior to 1.0 on linux.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

整数溢出或超界折返

UnEGG 输入验证错误漏洞

UnEGG是一个免费的，允许解压缩鸡蛋和ALZ格式和视图列表。 UnEGG 存在输入验证错误漏洞，该漏洞源于UnEGG v0.5和更早的版本有一个Integer溢出漏洞，当用户打开UnEGG错误处理的畸形特定文件时触发。攻击者可利用该漏洞导致任意代码执行。

N/A

N/A