8.3 High
AI Score
Confidence
High
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.029 Low
EPSS
Percentile
90.6%
Buffer overflow in (1) TZipBuilder 1.79.03.01, (2) Abakt 0.9.2 and 0.9.3-beta1, (3) CAM UnZip 4.0 and 4.3, and possibly other products, allows user-assisted attackers to execute arbitrary code via a ZIP archive that contains a file with a long file name.
CPE | Name | Operator | Version |
---|---|---|---|
cam_unzip | eq | 4.3 | |
cam_unzip | eq | 4.0 | |
abakt | eq | 0.9.3-beta1 | |
abakt | eq | 0.9.2 | |
tzipbuilder | eq | 1.79.03.01 |
secunia.com/advisories/19945
secunia.com/advisories/19946
secunia.com/advisories/20068
secunia.com/secunia_research/2006-26/advisory
secunia.com/secunia_research/2006-31/advisory/
secunia.com/secunia_research/2006-34/advisory/
securityreason.com/securityalert/853
securitytracker.com/id?1016064
securitytracker.com/id?1016107
www.securityfocus.com/archive/1/433257/100/0/threaded
www.securityfocus.com/archive/1/434019/100/0/threaded
www.securityfocus.com/archive/1/434520/100/0/threaded
www.securityfocus.com/bid/17880
www.vupen.com/english/advisories/2006/1687
www.vupen.com/english/advisories/2006/1805
www.vupen.com/english/advisories/2006/1865
www.xs4all.nl/~edienske/abakt/releases.html
exchange.xforce.ibmcloud.com/vulnerabilities/26275
exchange.xforce.ibmcloud.com/vulnerabilities/26435
exchange.xforce.ibmcloud.com/vulnerabilities/26549
marc.info/?l=full-disclosure&m=114771024009857&w=2