5 matches found
EUVD-2010-1472
Malware in sbrugna...
Debian DSA-3540-1 : lhasa - security update
Marcin Noga discovered an integer underflow in Lhasa, a lzh archive decompressor, which might result in the execution of arbitrary code if a malformed archive is processed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
DSA-3540-1 lhasa - security update
Bulletin has no description...
Mandrake Linux Security Advisory : clamav (MDKSA-2005:113)
Andrew Toller and Stefan Kanthak discovered that a flaw in libmspack's Quantum archive decompressor renders Clam AntiVirus vulnerable to a Denial of Service attack. The updated packages have been patched to correct the problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...
unarj: Long filenames buffer overflow and a path traversal vulnerability
Background unarj is an ARJ archive decompressor. Description unarj has a bounds checking vulnerability within the handling of long filenames in archives. It also fails to properly sanitize paths when extracting an archive if the "x" option is used to preserve paths. Impact An attacker could trigg...