Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
bandisoft ARK library heap overflow vulnerability
Vulnerability Description
A heap overflow issue was found in ARK library of bandisoft Co., Ltd when the Ark_DigPathA function parsed a file path. This vulnerability is due to missing support for string length check.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
Bandisoft ARK library 缓冲区错误漏洞
Vulnerability Description
Bandisoft ARK library是韩国Bandisoft公司的一个解压Windows、macOS、Linux等各种OS环境中现有的ZIP、RAR、ALZ、EGG等大多数压缩格式的库,并创建ZIP/7Z格式的压缩文件。 Bandisoft ARK library 存在缓冲区错误漏洞,该漏洞源于 Ark_DigPathA函数解析文件路径时的堆溢出问题。 此漏洞是由于缺少对字符串长度检查的支持。
CVSS Information
N/A
Vulnerability Type
N/A