The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service (out-of-bounds read) or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2016-06-07T14:00:00

Updated: 2024-08-05T23:24:49.056Z

Reserved: 2016-02-12T00:00:00

Link: CVE-2016-2335

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2016-06-07T14:06:12.293

Modified: 2024-11-21T02:48:14.953

Link: CVE-2016-2335

cve-icon Redhat

No data.