Zlib Compression Library Denial Of Service Vulnerability

Bugtraq ID: 11051
Class: Failure to Handle Exceptional Conditions
CVE:
Remote: Yes
Local: Yes
Published: Aug 25 2004 12:00AM
Updated: Jan 10 2006 11:33PM
Credit: Johan Thelmen <johan.thelmen@cygate.se> reported this vulnerability to Debian GNU/Linux.
Vulnerable: zlib zlib 1.2.1
+ Conectiva Linux 10.0
+ Red Hat Fedora Core2
+ Turbolinux Turbolinux Server 10.0
zlib zlib 1.2 .0.7
+ Red Hat Fedora Core1
Trustix Secure Linux 3.0
Trustix Secure Linux 2.2
Trustix Secure Enterprise Linux 2.0
SCO Unixware 7.1.4
SCO Unixware 7.1.3 up
SCO Unixware 7.1.3
SCO Unixware 7.1.2
SCO Unixware 7.1.1
SCO Unixware 7.1
SCO Unixware 7.0.1
SCO Unixware 7.0
SCO Open Server 6.0
SCO Open Server 5.0.7
SCO Open Server 5.0.6 a
SCO Open Server 5.0.6
S.u.S.E. Linux Personal 9.1
S.u.S.E. Linux Enterprise Server 9
Red Hat Fedora Core2
OpenPKG OpenPKG 2.3
OpenPKG OpenPKG 2.2
OpenPKG OpenPKG 2.1
OpenPKG OpenPKG 2.0
OpenPKG OpenPKG Current
OpenBSD OpenBSD 3.5
OpenBSD OpenBSD -current
Mandriva Linux Mandrake 10.0 AMD64
Mandriva Linux Mandrake 10.0
MacSSH MacSSH 2.1 fc3
MacSFTP MacSFTP 1.0.6
libpng libpng3 1.2.6
libpng libpng 1.0.16
FileZilla FileZilla Server 0.7.1
FileZilla FileZilla Server 0.7
CVS CVS 1.12.12
Avaya Intuity R5 R5.1.46
Not Vulnerable: zlib zlib 1.2.2
+ zsync zsync 0.4
+ zsync zsync 0.3.3
+ zsync zsync 0.3.2
+ zsync zsync 0.3.1
+ zsync zsync 0.3
+ zsync zsync 0.2.3
+ zsync zsync 0.2.2
+ zsync zsync 0.2.1
+ zsync zsync 0.2
+ zsync zsync 0.1.6
+ zsync zsync 0.1.5
+ zsync zsync 0.1.4
+ zsync zsync 0.1.3
+ zsync zsync 0.1.2
+ zsync zsync 0.1.1
+ zsync zsync 0.1
+ zsync zsync 0.0.6
+ zsync zsync 0.0.5
+ zsync zsync 0.0.4
+ zsync zsync 0.0.3
+ zsync zsync 0.0.2
+ zsync zsync 0.0.1
libpng libpng3 1.2.7
+ Trustix Secure Enterprise Linux 2.0
libpng libpng 1.0.17
CVS CVS 1.12.13


 

Privacy Statement
Copyright 2010, SecurityFocus