PowerZip <= 7.06.3895 Long Filename Handling Buffer Overflow Exploit

Exploit for unknown platform in category local exploits ==================================================================== PowerZip include unsigned char scode=...

PowerZip 7.06.38950 - &#039;Filename Handling&#039; Local Buffer Overflow

/ PowerZip 7.06 Exploit by bratax http://www.bratax.be/ Just a quick one as I was able to reuse most of my zipcentral eploit code.. Greetz to everyone I like...special greetz to mobbie and DT as they were sad I didn't mention them the previous time :p Some technical info: - Original advisory +...

CVE-2006-4359

Stack-based buffer overflow in Trident Software PowerZip 7.06 Build 3895 on Windows 2000 allows remote attackers to execute arbitrary code via a ZIP archive containing a long filename...

CVE-2006-4359

Stack-based buffer overflow in Trident Software PowerZip 7.06 Build 3895 on Windows 2000 allows remote attackers to execute arbitrary code via a ZIP archive containing a long filename...

CVE-2006-4116

Multiple stack-based buffer overflows in Lhaz before 1.32 allow user-assisted attackers to execute arbitrary code via a long filename in 1 an LHZ archive, when saving the filename during extraction; and 2 an LHZ archive with an invalid CRC checksum, when constructing an error message...

CVE-2006-4116

Multiple stack-based buffer overflows in Lhaz before 1.32 allow user-assisted attackers to execute arbitrary code via a long filename in 1 an LHZ archive, when saving the filename during extraction; and 2 an LHZ archive with an invalid CRC checksum, when constructing an error message...

CVE-2006-4070

Format string vulnerability in Imendio Planner 0.13 allows user-assisted attackers to execute arbitrary code via format string specifiers in a filename...

Imendio Planner format string vulnerability

Format string vulnerability in filename...

IMENDIO PLANNER REMOTE FILENAME FORMAT STRING VULNERABILITY

By : LoneEagle E-mail : [email protected] http://kandangjamur.net Affected : IMENDIO PLANNER 0.13 PROJECT MANAGEMENT FEDORA 4. Impact : System Acces From : Remote Severity : Moderately Critical Description: ------------ Imendio planner was failed when opening file name format string. Remote...

LHAZ archiver buffer overflow

Buffer overflow on oversized filename during JZH archives parsing...

tiffsplit buffer overflow

Stack-based buffer overflow in the tiffsplit command in libtiff 3.8.2 and earlier might might allow attackers to execute arbitrary code via a long filename. NOTE: tiffsplit is not setuid. If there is not a common scenario under which tiffsplit is called with attacker-controlled command line...

CVE-2006-3350

Stack-based buffer overflow in AutoVue SolidModel Professional Desktop Edition 19.1 Build 5993 allows user-assisted remote attackers to execute arbitrary code via a long filename in a 1 ARJ, 2 RAR, or 3 ZIP archive...

CVE-2006-3633

OSSP shiela 1.1.5 and earlier allows remote authenticated users to execute arbitrary commands on the CVS server via shell metacharacters in a filename that is committed...

CVE-2006-3849

Stack-based buffer overflow in Warzone 2100 and Warzone Resurrection 2.0.3 and earlier allows remote attackers to execute arbitrary code via a 1 long message handled by the recvTextMessage function in multiplay.c or a 2 long filename handled by NETrecvFile function in netplay/netplay.c...

local to local copy uses shell expansion twice

scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice...

RARLAB WinRAR 3.x - LHA Filename Handling Buffer Overflow

RARLAB WinRAR 3.x - LHA Filename Handling Buffer Overflow // source: https://www.securityfocus.com/bid/19043/info WinRAR is susceptible to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffe...

RARLAB WinRAR 3.x - LHA Filename Handling Buffer Overflow

// source: https://www.securityfocus.com/bid/19043/info WinRAR is susceptible to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. This vulnerability allows attackers to execute arbitrar...

CVE-2006-3547

EMC VMware Player allows user-assisted attackers to cause a denial of service unrecoverable application failure via a long value of the ide1:0.fileName parameter in the .vmx file of a virtual machine. NOTE: third parties have disputed this issue, saying that write access to the .vmx file enables...

CVE-2006-3547

EMC VMware Player is affected by a user‑assisted denial of service vulnerability triggered by a long value assigned to ide1:0.fileName in the VM’s .vmx file. The issue leads to unrecoverable application failure when parsing the VMX, with third parties noting that write access to the .vmx file cou...

CVE-2006-3489

F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier allows remote attackers to bypass anti-virus scanning via a crafted filename...