Malicious Archive File Unzip Vulnerability

vendor:

Various products for scanning enterprise email and filesystems

by:

Unknown

7.5

CVSS

HIGH

Unzip vulnerability

506

CWE

Product Name: Various products for scanning enterprise email and filesystems

Affected Version From: All products that handle compressed files and perform scanning

Affected Version To:

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

Unknown

Malicious Archive File Unzip Vulnerability

An attacker can create a malicious archive file with an unusually high compression ratio. When this file is uncompressed by a scanner process, it can consume significant amounts of available disk space.

Mitigation:

Implement input validation and limit the size of uncompressed files during scanning. Regularly monitor disk space usage.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/3027/info

A wide range of products exists for scanning enterprise email and filesystems for files containing viruses and other undesirable content.

These products handle compressed files by temporarily unzipping them and scanning their uncompressed contents.

It is possible to construct an archive with an unusually high compression ratio, resulting in a small file which grows to extreme size when uncompressed.

When a scanner process unpacks such an archive to examine its contents, the resulting file may be so large that it consumes significant amounts of available disk space.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/21006.zip