Description
Buffer overflow in the gzprintf function in zlib 1.1.4, when zlib is compiled without vsnprintf or when long inputs are truncated using vsnprintf, allows attackers to cause a denial of service or possibly execute arbitrary code.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Richard Kettlewel · cdoslinux
https://www.exploit-db.com/exploits/22273
References (19)
Scores
EPSS
0.3564
EPSS Percentile
97.1%
Details
Status
published
Products (1)
zlib/zlib
1.1.4
Published
Mar 07, 2003
Tracked Since
Feb 18, 2026