Remote Code Execution Vulnerability in 7zip and p7zip via Crafted HFS+ Image

Remote Code Execution Vulnerability in 7zip and p7zip via Crafted HFS+ Image

CVE-2016-2334 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZlibFile method in 7zip before 16.00 and p7zip allows remote attackers to execute arbitrary code via a crafted HFS+ image.

Learn more about our Web Application Penetration Testing UK.