Knownsoft Turbo Searcher ARJ文件处理栈溢出漏洞

Turbo Searcher是一款快速进行文件搜索的工具，可以用文件名、文件夹、时间、大小等搜索任何文件。 Turbo Searcher所使用的7-Zip ARJ插件（arj.dll）中存在栈溢出漏洞，远程攻击者可能利用此漏洞在用户机器上执行任意指令。 如果用户受骗对包含有恶意ARJ文档的目录执行了搜索的话，同时禁用了“Quick Search”选项且启用了“Search in compressed file”选项，就会触发这个漏洞，导致执行任意代码。 Knownsoft Turbo Searcher 3.30 build 052705...

CVE-2005-3051

Stack-based buffer overflow in the ARJ plugin arj.dll 3.9.2.0 for 7-Zip 3.13, 4.23, and 4.26 BETA, as used in products including Turbo Searcher, allows remote attackers to execute arbitrary code via a large ARJ block...

CVE-2005-3051

Stack-based buffer overflow in the ARJ plugin arj.dll 3.9.2.0 for 7-Zip 3.13, 4.23, and 4.26 BETA, as used in products including Turbo Searcher, allows remote attackers to execute arbitrary code via a large ARJ block...

CVE-2005-3051

The CVE-2005-3051 entry concerns a stack-based buffer overflow in the ARJ plugin (arj.dll) 3.9.2.0 for 7-Zip 3.13, 4.23, and 4.26 BETA used by products such as Turbo Searcher. A crafted large ARJ block can trigger arbitrary code execution on a remote host. Connected advisories consistently descri...