CVE-2016-2334

HIGH

7-zip < 16.00 - Remote Code Execution via Crafted HFS+ Image

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-2334. PoCs published by icewall.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2016-2334, targeting a heap-based vulnerability in 7-Zip's HFS+ archive handling. It includes a Python script to generate malicious HFS+ files and a WinDbg JavaScript script to analyze heap allocations during exploitation.

Description

Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZlibFile method in 7zip before 16.00 and p7zip allows remote attackers to execute arbitrary code via a crafted HFS+ image.

Exploits (1)

nomisec WORKING POC 10 stars
by icewall · poc
https://github.com/icewall/CVE-2016-2334

This repository contains a functional exploit for CVE-2016-2334, targeting a heap-based vulnerability in 7-Zip's HFS+ archive handling. It includes a Python script to generate malicious HFS+ files and a WinDbg JavaScript script to analyze heap allocations during exploitation.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: 7-Zip (versions prior to fix for CVE-2016-2334)
No auth needed
Prerequisites: WinDbg for heap analysis · 7-Zip vulnerable version installed
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

References (9)

Core 9
Core References
Exploit, Third Party Advisory x_refsource_misc
http://www.talosintel.com/reports/TALOS-2016-0093/
Exploit, Third Party Advisory x_refsource_misc
http://blog.talosintel.com/2016/05/multiple-7-zip-vulnerabilities.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/90531
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201701-27
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1035876

Scores

CVSS v3 7.8
EPSS 0.1474
EPSS Percentile 96.3%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (4)
7-zip/7-zip < 15.14
fedoraproject/fedora 23
fedoraproject/fedora 24
oracle/solaris
Published Dec 13, 2016
Tracked Since Feb 18, 2026