Description

The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.

Remediation

References

CVE-2016-9842

Related Vulnerabilities

WordPress Plugin Fancy Product Designer-WooCommerce Cross-Site Scripting (4.5.0)

SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17299)

WordPress Plugin Ultimate Membership Pro Cross-Site Request Forgery (8.6.1)

WebLogic CVE-2024-21216 Vulnerability (CVE-2024-21216)

Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-2405)

Severity

High

Classification

CVE-2016-9842 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities