0001384: fcrackzip 1.0.4 buffer overflow/ does not crack with dictionary

ID	Project	Category	View Status	Date Submitted	Last Update

0001384	Kali Linux	Tool Upgrade Request	public	2014-06-04 15:20	2014-06-04 15:20

Reporter	~~karkassa~~	Assigned To	muts
Priority	normal	Severity	minor	Reproducibility	always
Status	resolved	Resolution	fixed
Platform	x64	OS	Kali	OS Version	1.0
Product Version	1.0.6
Fixed in Version	1.0.7

Summary	0001384: fcrackzip 1.0.4 buffer overflow/ does not crack with dictionary
Description	while cracking some zips I recognized that paths, which are too long, still produce a buffer overflow. -> ScrBO.jpg In my case "fcrackzip -Dp /media/sf_Gemeinsam/Cracking/wordlists/dictionaryList.txt -v -u Geheim.zip" On the other hand, If I cut the path down to "fcrackzip -Dp dictionaryList.txt -v -u Geheim.zip" the zip will not be cracked. The only output I get is: found file 'Geheim.txt', (size cp/uc 57/ 45, flags 1, chk cdce) -> ScrNoPW.jpg The password for the zip is definitly (I checked 4 whitespaces etc. too) in the dictionaryList.txt. Feel free to ask if something is not clear.
Additional Information	fcrackzip 1.0.4
Attached Files	ScrBO.jpg (150,706 bytes) ScrBO.jpg (150,706 bytes) ScrNoPW.jpg (11,667 bytes) ScrNoPW.jpg (11,667 bytes)

muts 2014-03-13 13:56 reporter ~0002038	You might want to open a bug report with fcrackzip developers.

DrOetcker 2014-03-17 17:07 reporter ~0002039	Heyho, i've done a little research and it seems that fcrackzip just needs to be updated to 1.0.5 -> https://bugs.launchpad.net/ubuntu/+source/fcrackzip/+bug/733868 This one is exactly my bug thx DrOetcker

muts 2014-03-20 16:07 reporter ~0002040	Updated to fcrackzip_1.0-5kali1, will hit the repos soon. Please test to see if your issue is resolved.

Date Modified	Username	Field	Change
2014-06-04 15:20	~~karkassa~~	New Issue
2014-06-29 19:52	~~vichet~~	Issue cloned: 0001492
2021-05-31 13:37	rhertzog	Category	Tool Upgrade => Tool Upgrade Request