CVE-2018-1000035

Source
Severity Medium
Remote No
Type Arbitrary code execution
Description
A heap-based buffer overflow exists in Info-Zip UnZip version <= 6.00 in the processing of password-protected archives that allows an attacker to perform a denial of service or to possibly achieve code execution.
Group Package Affected Fixed Severity Status Ticket
AVG-611 unzip 6.0-12 Medium Vulnerable
References
https://sec-consult.com/en/blog/advisories/multiple-vulnerabilities-in-infozip-unzip/index.html