3 matches found
EUVD-2007-4411
Malware in sbrugna...
Code injection
Lhaz 1.33 allows remote attackers to execute arbitrary code via unknown vectors, as actively exploited in August 2007 by the Exploit-LHAZ.a gzip file, a different issue than CVE-2006-4116...
CVE-2006-4116
Vulnerability: CVE-2006-4116 affects Lhaz prior to 1.32. Two stack-based buffer overflows could allow user-assisted code execution: (1) via a long filename inside an LHZ archive during extraction, and (2) via an LHZ archive with an invalid CRC checksum when constructing an error message. Impact i...