Lucene search
K

225 matches found

Cvelist
Cvelist
added 2007/01/16 11:0 p.m.23 views

CVE-2007-0264

Buffer overflow in Winzip32.exe in WinZip 9.0 allows local users to cause a denial of service application crash and possibly execute arbitrary code via a long command line argument. NOTE: this issue may cross privilege boundaries if an application automatically invokes Winzip32.exe for untrusted...

7.6AI score0.00694EPSS
Exploits0References2
exploitpack
exploitpack
added 2007/01/12 12:0 a.m.15 views

WinZip 9.0 - Command Line Remote Buffer Overflow

WinZip 9.0 - Command Line Remote Buffer Overflow source: https://www.securityfocus.com/bid/22020/info WinZip is prone to a remote buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it into an insufficiently sized buffer. An attacker may...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/01/12 12:0 a.m.22 views

WinZip 9.0 - Command Line Remote Buffer Overflow

source: https://www.securityfocus.com/bid/22020/info WinZip is prone to a remote buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it into an insufficiently sized buffer. An attacker may exploit this issue to cause denial-of-service...

7.4AI score
Exploits0
CVE
CVE
added 2007/01/05 11:0 a.m.58 views

CVE-2006-6884

CVE-2006-6884 reports a Buffer Overflow in the WinZip FileView ActiveX control (WZFILEVIEW.FileViewCtrl.61) used by WinZip 10.0 Build 6667. The flaw allows remote code execution when a long argument is passed to CreateNewFolderFromName, a distinct issue from CVE-2006-5198. Public sources in the c...

9.3CVSS7.6AI score0.04487EPSS
Exploits0References2Affected Software1
seebug.org
seebug.org
added 2007/01/04 12:0 a.m.30 views

WinZip FileView ActiveX控件CreateNewFolderFromName方法缓冲区溢出漏洞

WinZip是一款流行的文件压缩/解压工具。 WinZip的FileView ActiveX控件(WZFILEVIEW.FileViewCtrl.61,CLSID为A09AE68F-B14D-43ED-B713- BA413F034904)中存在堆溢出漏洞,远程攻击者可能利用此漏洞在用户机器上执行任意指令。 WinZip FileView ActiveX控件的CreateNewFolderFromName方法在处理超长畸形的参数时存在堆溢出漏洞,远程攻击者可能利用此漏洞通过诱使用户点击访问恶意的网页来控制用户的机器。 WinZip WinZip 10.0 Build 6667...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2007/01/03 12:0 a.m.26 views

WinZip10.0 FileView ActiveX Controls CreateNewFolderFromName Method Buffer overflow

The first flaw is due to errors in the "WZFILEVIEW.FileViewCtrl.61" ActiveX control that does not validate input passed to CreateNewFolderFromName methods,When you pass a long stringlength235,It will bead to buffer overflow .which could be exploited by remote attackers to execute arbitrary comman...

5.4AI score
Exploits0
securityvulns
securityvulns
added 2007/01/03 12:0 a.m.43 views

WinZip ActiveX buffer overflow

Buffer overflow in WZFILEVIEW.FileViewCtrl.61 element...

3.5AI score
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2007/01/03 12:0 a.m.46 views

WinZip FileView ActiveX controls CreateNewFolderFromName Method Buffer Overflow Vulnerability

WinZip FileView ActiveX controls CreateNewFolderFromName Method Buffer Overflow Vulnerability ------------------------------------------------------------------ SUMMARY: A vulnerability has been identified in Winzip 10.0 Build 6667,May be other version, which could be exploited by remote or local...

1.1AI score
Exploits0
seebug.org
seebug.org
added 2007/01/01 12:0 a.m.14 views

WinZIP 10.0 FileView ActiveX Controls Remote Overflow Exploit

No description provided by source. html head object classid="clsid:A09AE68F-B14D-43ED-B713-BA413F034904" id="winzip" /object /head body SCRIPT language="javascript" / ---=== winzip-exploit.html XiaoHui : 76693223at163com HomePage: www.nipc.org.cn c 2006 All rights reserved...

7.1AI score
Exploits0
NVD
NVD
added 2006/12/31 5:0 a.m.22 views

CVE-2006-6884

Buffer overflow in the WZFILEVIEW.FileViewCtrl.61 ActiveX control aka Sky Software "FileView" ActiveX control for WinZip 10.0 Build 6667 allows remote attackers to execute arbitrary code via a long argument to the CreateNewFolderFromName method, a different vulnerability than CVE-2006-5198...

9.3CVSS7.6AI score0.04487EPSS
Exploits0References2
exploitpack
exploitpack
added 2006/12/31 12:0 a.m.16 views

WinZip 10.0 - FileView ActiveX Controls Remote Overflow

WinZip 10.0 - FileView ActiveX Controls Remote Overflow / ---=== winzip-exploit.html XiaoHui : 76693223at163com HomePage: www.nipc.org.cn c 2006 All rights reserved. note:Because of the prior vuln in FileView ActiveX Control,Micorsoft has disabled this ActiveX Controls, To test this vuln,You can...

1AI score
Exploits0
0day.today
0day.today
added 2006/12/31 12:0 a.m.17 views

WinZIP 10.0 FileView ActiveX Controls Remote Overflow Exploit

Exploit for unknown platform in category remote exploits ============================================================= WinZIP 10.0 FileView ActiveX Controls Remote Overflow Exploit ============================================================= / ---=== winzip-exploit.html XiaoHui : 76693223at163co...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/12/31 12:0 a.m.34 views

WinZip 10.0 - FileView ActiveX Controls Remote Overflow

/ ---=== winzip-exploit.html XiaoHui : 76693223at163com HomePage: www.nipc.org.cn c 2006 All rights reserved. note:Because of the prior vuln in FileView ActiveX Control,Micorsoft has disabled this ActiveX Controls, To test this vuln,You can delete the key:...

7.4AI score
Exploits0
Saint
Saint
added 2006/11/27 12:0 a.m.26 views

WinZip FileView ActiveX control unsafe method

Added: 11/27/2006 CVE: CVE-2006-5198 BID: 21060 OSVDB: 30433 Background WinZip includes the FileView ActiveX control which provides a user interface similar to the file view pane in Windows Explorer. Problem The FileView ActiveX control is marked "safe for scripting" and exposes several unsafe...

4CVSS7AI score0.602EPSS
Exploits5
Saint
Saint
added 2006/11/27 12:0 a.m.25 views

WinZip FileView ActiveX control unsafe method

Added: 11/27/2006 CVE: CVE-2006-5198 BID: 21060 OSVDB: 30433 Background WinZip includes the FileView ActiveX control which provides a user interface similar to the file view pane in Windows Explorer. Problem The FileView ActiveX control is marked "safe for scripting" and exposes several unsafe...

4CVSS7AI score0.602EPSS
Exploits5
Saint
Saint
added 2006/11/27 12:0 a.m.32 views

WinZip FileView ActiveX control unsafe method

Added: 11/27/2006 CVE: CVE-2006-5198 BID: 21060 OSVDB: 30433 Background WinZip includes the FileView ActiveX control which provides a user interface similar to the file view pane in Windows Explorer. Problem The FileView ActiveX control is marked "safe for scripting" and exposes several unsafe...

4CVSS7AI score0.602EPSS
Exploits5
Saint
Saint
added 2006/11/27 12:0 a.m.28 views

WinZip FileView ActiveX control unsafe method

Added: 11/27/2006 CVE: CVE-2006-5198 BID: 21060 OSVDB: 30433 Background WinZip includes the FileView ActiveX control which provides a user interface similar to the file view pane in Windows Explorer. Problem The FileView ActiveX control is marked "safe for scripting" and exposes several unsafe...

4CVSS7AI score0.602EPSS
Exploits5
NVD
NVD
added 2006/11/21 10:7 p.m.19 views

CVE-2006-3890

Stack-based buffer overflow in the Sky Software FileView ActiveX control, as used in WinZip 10 before build 7245 and in certain other applications, allows remote attackers to execute arbitrary code via a long FilePattern attribute in a WZFILEVIEW object, a different vulnerability than CVE-2006-51...

9.3CVSS7.7AI score0.14465EPSS
Exploits1References7
Cvelist
Cvelist
added 2006/11/21 10:0 p.m.25 views

CVE-2006-3890

Stack-based buffer overflow in the Sky Software FileView ActiveX control, as used in WinZip 10 before build 7245 and in certain other applications, allows remote attackers to execute arbitrary code via a long FilePattern attribute in a WZFILEVIEW object, a different vulnerability than CVE-2006-51...

7.7AI score0.14465EPSS
Exploits1References7
CVE
CVE
added 2006/11/21 10:0 p.m.114 views

CVE-2006-3890

Technical details for CVE-2006-3890 (affected component, impact, exploit information) are not provided in the connected documents. Monitor for updates for any concrete disclosures or fixes.

9.3CVSS7.7AI score0.14465EPSS
Exploits1References7Affected Software2
Rows per page
Query Builder