17 matches found
EUVD-2008-4401
Malware in sbrugna...
Windows Gather DynaZIP Saved Password Extraction
This module extracts clear text credentials from dynazip.log. The log file contains passwords used to encrypt compressed zip files in Microsoft Plus! 98 and Windows Me. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...
Stack overflow
Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to...
CVE-2008-4420
Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to...
CVE-2008-4420
CVE-2008-4420 concerns multiple stack-based buffer overflows in DZIP32.DLL (DynaZip Max) and DZIPS32.DLL (DynaZip Max Secure) that are triggered by a long filename in a ZIP archive during actions such as Fix/Repair, Add, Update, or Freshen. The vulnerables are DynaZip components shipped in variou...
Windows ZIP folders buffer overflow
Integer overflow in DynaZip DUNZIP32.DLL library on oversized filename in archive...
IBM Lotus Notes DUNZIP32.dll Buffer Overflow Vulnerability
Networksecurity.fi Security Advisory 06-09-2006 Title: IBM Lotus Notes DUNZIP32.dll buffer overflow vulnerability Criticality: High 3/3 Affected software: IBM Lotus Notes versions 6.5.4, 5.0.10 and prior Author: Juha-Matti Laurio juha-matti.laurio at netti.fi Date: 6th September, 2006 Advisory ID...
DynaZip < 5.0.0.8 / 6.0.0.5 Zip Archive Handling Multiple Overflows
The version of the DynaZip Max or DynaZip Max Secure installed on the remote host contains a DLL that reportedly is prone to stack-based overflows when repairing or updating a specially crafted ZIP file. Successful exploitation allows an attacker to execute arbitrary code on the affected host...
DynaZip buffer overflow
Buffer overflows in DZIP32.DLL/DZIPS32.DLL libraries on ZIP archives processing...
[Full-disclosure] [vuln.sg] DynaZip DZIP32.DLL/DZIPS32.DLL Buffer Overflow Vulnerabilities
vuln.sg Vulnerability Research Advisory DynaZip DZIP32.DLL/DZIPS32.DLL Buffer Overflow Vulnerabilities by Tan Chew Keong Release Date: 2006-07-25 Summary ------- Some vulnerabilities have been found in DynaZip DZIP32.DLL/DZIPS32.DLL. When exploited, the vulnerabilities allow execution of arbitrar...
dtSearch DUNZIP32.dll Buffer Overflow Vulnerability
Networksecurity.fi Security Advisory 21-12-2005 Title: dtSearch DUNZIP32.dll buffer overflow vulnerability Criticality: High 3/3 Affected software: dtSearch versions prior than 7.20 Build 7136 Author: Juha-Matti Laurio info at networksecurity.fi, juha-matti.laurio at netti.fi Date: 21th December,...
[NT] CheckMark MultiLedger Buffer Overflow Vulnerability (DUNZIP32.dll)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
CVE-2004-1094
Buffer overflow in InnerMedia DynaZip DUNZIP32.dll file version 5.00.03 and earlier allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, as demonstrated using 1 a .rjs skin file in RealPlayer 10 through RealPlayer 10.5 6.0.12.1053, RealOne Playe...
KLA10415 ACE vulnerability in multiple software
A buffer overflow was found in the DynaZip library, which is used in several pieces of software. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZIP file Original advisories - Related products DynaZ...
CVE-2004-1094
CVE-2004-1094 concerns a buffer overflow in InnerMedia DynaZip DUNZIP32.dll (version 5.00.03 and earlier) that enables remote code execution when a crafted ZIP with a long filename is processed. Affected products include RealPlayer 10 / RealOne Player and various third‑party apps (e.g., CheckMark...
CVE-2004-1094
Buffer overflow in InnerMedia DynaZip DUNZIP32.dll file version 5.00.03 and earlier allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, as demonstrated using 1 a .rjs skin file in RealPlayer 10 through RealPlayer 10.5 6.0.12.1053, RealOne Playe...
InnerMedia DynaZip library vulnerable to buffer overflow via long file names
Overview Releases prior to version 5.00.04 of the InnerMedia DynaZip compression library contain a buffer overflow that may allow a remote attacker to execute arbitrary code. Description DynaZip is a popular compression library for the Microsoft Windows platform. A bounds checking deficiency in...