CVE-2007-4546
Unreal Commander 0.92 build 565 and 573 is affected. The software extracts ZIP entries using Local File Header names instead of Central Directory filenames, enabling an attacker to cause a user to overwrite or create local files via a crafted archive. The description notes the mismatch between Ce...