| Title | BGA32.DLL および QBga32.DLL における複数の脆弱性 |
|---|---|
| Summary | BGA32.DLL は、gza、bza 形式のファイルを圧縮・展開するためのライブラリです。BGA32.DLL には、旧バージョンの zlib ライブラリおよび bzip2 ライブラリの使用に起因するバッファオーバーフローの問題を含む複数の脆弱性が存在します。 また、BGA32.DLL のラッパ DLL である QBga32.DLL も、本脆弱性の影響を受けます。 この脆弱性情報は、情報セキュリティ早期警戒パートナーシップに基づき下記の方が IPA に報告し、JPCERT/CC が開発者との調整を行いました。 報告者: 近藤和宏 氏 |
| Possible impacts | 想定される影響は各脆弱性により異なりますが、細工されたファイルを展開することで、サービス運用妨害 (DoS) 攻撃を受けたり、任意のコードを実行されたりするなどの可能性があります。 |
| Solution | [最新版の QBga32.DLL を使用する] 本脆弱性は、BGA32.DLL のラッパ DLL である QBga32.DLL version 0.05 で修正されています。 [BGA32.DLL を使用しない] BGA32.DLL の開発および配布は既に終了しています。BGA32.DLL の使用を停止してください。 |
| Publication Date | May 19, 2015, midnight |
| Registration Date | May 19, 2015, 12:03 p.m. |
| Last Update | May 22, 2015, 2:25 p.m. |
| CVSS2.0 : 警告 | |
| Score | 6.8 |
|---|---|
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
| Kazuhiro Inaba |
| QBga32.DLL version 0.04 およびそれ以前 |
| 木村利靖 |
| BGA32.DLL |
| No | Changed Details | Date of change |
|---|---|---|
| 0 | [2015年05月19日] 掲載 [2015年05月22日] 共通脆弱性識別子(CVE):CVE-2003-0107 を追加 共通脆弱性識別子(CVE):CVE-2005-0953 を追加 共通脆弱性識別子(CVE):CVE-2005-1260 を追加 共通脆弱性識別子(CVE):CVE-2005-1849 を追加 共通脆弱性識別子(CVE):CVE-2005-2096 を追加 参考情報:National Vulnerability Database (NVD) (CVE-2003-0107) を追加 参考情報:National Vulnerability Database (NVD) (CVE-2005-0953) を追加 参考情報:National Vulnerability Database (NVD) (CVE-2005-1260) を追加 参考情報:National Vulnerability Database (NVD) (CVE-2005-1849) を追加 参考情報:National Vulnerability Database (NVD) (CVE-2005-2096) を追加 |
Feb. 17, 2018, 10:37 a.m. |
| Summary | Buffer overflow in the gzprintf function in zlib 1.1.4, when zlib is compiled without vsnprintf or when long inputs are truncated using vsnprintf, allows attackers to cause a denial of service or possibly execute arbitrary code. |
|---|---|
| Publication Date | March 7, 2003, 2 p.m. |
| Registration Date | Jan. 29, 2021, 6:02 p.m. |
| Last Update | June 23, 2022, 1:40 a.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:zlib:zlib:1.1.4:*:*:*:*:*:*:* | |||||
| Summary | Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete. |
|---|---|
| Publication Date | May 2, 2005, 1 p.m. |
| Registration Date | Jan. 29, 2021, 5:58 p.m. |
| Last Update | Oct. 20, 2018, 12:31 a.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:bzip:bzip2:0.9:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:bzip:bzip2:0.9.5_a:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:bzip:bzip2:0.9.5_b:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:bzip:bzip2:0.9.5_c:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:bzip:bzip2:0.9.5_d:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:bzip:bzip2:0.9_a:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:bzip:bzip2:0.9_b:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:bzip:bzip2:0.9_c:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:bzip:bzip2:1.0:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:bzip:bzip2:1.0.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:bzip:bzip2:1.0.2:*:*:*:*:*:*:* | |||||
| Summary | bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb"). |
|---|---|
| Publication Date | May 19, 2005, 1 p.m. |
| Registration Date | Jan. 29, 2021, 5:58 p.m. |
| Last Update | Nov. 14, 2020, 2:07 a.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:bzip:bzip2:*:*:*:*:*:*:*:* | 1.0.3 | ||||
| Configuration2 | or higher | or less | more than | less than | |
| cpe:2.3:o:canonical:ubuntu_linux:4.10:*:*:*:*:*:*:* | |||||
| cpe:2.3:o:canonical:ubuntu_linux:5.04:*:*:*:*:*:*:* | |||||
| Configuration3 | or higher | or less | more than | less than | |
| cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:* | |||||
| cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:* | |||||
| Configuration4 | or higher | or less | more than | less than | |
| cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* | 10.4.11 | ||||
| Summary | inftrees.h in zlib 1.2.2 allows remote attackers to cause a denial of service (application crash) via an invalid file that causes a large dynamic tree to be produced. |
|---|---|
| Publication Date | July 26, 2005, 1 p.m. |
| Registration Date | Jan. 29, 2021, 5:58 p.m. |
| Last Update | June 23, 2022, 1:40 a.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:zlib:zlib:1.2.2:*:*:*:*:*:*:* | |||||
| Summary | zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file. |
|---|---|
| Publication Date | July 6, 2005, 1 p.m. |
| Registration Date | Jan. 29, 2021, 5:58 p.m. |
| Last Update | June 23, 2022, 1:40 a.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:zlib:zlib:1.2.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:zlib:zlib:1.2.0:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:zlib:zlib:1.2.2:*:*:*:*:*:*:* | |||||