Article ID: 290719286

iQ.Suite – Treatment of non-recursive zip bombs

Tags:  IBM Domino  Watchdog  Wall  Convert  Microsoft Exchange

Problem

In July 2019, several articles reported on non-recursive Zip bombs.

winfuture.de/news,110030.html
www.bamsoftware.com/hacks/zipbomb/
www.golem.de/news/malware-zip-bombe-entpackt-46-mbyte-zu-4-5-petabyte-1907-142507.html

A very efficient zip bomb unpacks more than 4.5 petabytes of data from a 46 MB archive.

This creation is a non-recursive variant. These compressed archives can be considered to be malware, since after unpacking, they can completely fill the entire hard disk and thus eventually cause a system crash, if the system is not prepared.

Solution

The iQ.Suite is not affected by the problem described above and protects against the unpacking of such Zip bombs.

 

Security with iQ.Suite:

The integrated AV scanner and unpacker with defined unpacking depths and size limitations ensure more safety by aborting the unpacking process and sending error messages.

Further information

Please note:

iQ.Suite Domino

 

In the default configuration, there is no limit for the unpacked size.

If necessary, change the size limitations according to your system environment or specifications.

 

Unpacker - optional parameter in the Settings tab:

max-expanded-size -

e.g:

-- max-expanded-size=100000000

Last updated: 16.07.2019

Last updated: 29 July 2019


« Previous article

Rate it

0/5 stars (0 votes)
iQ.Suite – Treatment of non-recursive zip bombs 0 5 0

Add a comment


Captcha

Go back

Cookies are important to the proper functioning of this site. Click Agree to proceed and accept cookies. Learn more >>