Lucene search
K

33 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-4026

Malware in sbrugna...

5.1CVSS6.4AI score0.04758EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-6144

Malware in sbrugna...

6.6CVSS6.4AI score0.03456EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-16981

Malware in sbrugna...

8.8CVSS8.4AI score0.01439EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-12816

Malware in sbrugna...

7.8CVSS7.6AI score0.04042EPSS
Exploits1References3
OSV
OSV
added 2018/12/21 3:29 p.m.4 views

CVE-2018-5196

Alzip 10.76.0.0 and earlier is vulnerable to a stack overflow caused by improper bounds checking. By persuading a victim to open a specially-crafted LZH archive file, a attacker could execute arbitrary code execution...

7.8CVSS6.1AI score0.01439EPSS
Exploits0References2
NVD
NVD
added 2018/12/21 3:29 p.m.20 views

CVE-2018-5196

Alzip 10.76.0.0 and earlier is vulnerable to a stack overflow caused by improper bounds checking. By persuading a victim to open a specially-crafted LZH archive file, a attacker could execute arbitrary code execution...

8.8CVSS9.1AI score0.01439EPSS
Exploits0References2
CVE
CVE
added 2018/12/21 3:0 p.m.47 views

CVE-2018-5196

The CVE-2018-5196 entry affects ESTsoft ALZip (versions 10.76.0.0 and earlier). The root cause is a stack overflow caused by improper bounds checking when handling specially crafted LZH archives. Exploitation wording from multiple sources indicates that convincing a user to open a malicious LZH f...

8.8CVSS8.3AI score0.01439EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/12/21 3:0 p.m.24 views

CVE-2018-5196 Alzip Stack Overflow Vulnerability

Alzip 10.76.0.0 and earlier is vulnerable to a stack overflow caused by improper bounds checking. By persuading a victim to open a specially-crafted LZH archive file, a attacker could execute arbitrary code execution...

8.8CVSS9.1AI score0.01439EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/09/09 12:0 a.m.44 views

Symantec Protection for SharePoint Servers 6.0.3 to 6.0.5 < HF1.5 / 6.0.6 < HF1.6 Multiple Vulnerabilities (SYM16-010)

The version of Symantec Protection for SharePoint Servers installed on the remote host is 6.0.3 to 6.0.5 prior to HF1.5 or 6.0.6 prior to HF1.6. It is, therefore, affected by multiple vulnerabilities : - An array indexing error exists in the Unpack::ShortLZ function within file unpack15.cpp due t...

10CVSS7.7AI score0.53402EPSS
Exploits6References9
Tenable Nessus
Tenable Nessus
added 2016/04/05 12:0 a.m.33 views

Debian DSA-3540-1 : lhasa - security update

Marcin Noga discovered an integer underflow in Lhasa, a lzh archive decompressor, which might result in the execution of arbitrary code if a malformed archive is processed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

7.8CVSS7.7AI score0.03228EPSS
Exploits1References4
ThreatPost
ThreatPost
added 2016/04/01 1:7 p.m.16 views

New Heap-Spray Exploit Tied To LZH Archive Decompression

Researchers found a vulnerability in the classic compression standard Lhasa, once a mainstay for game developers in the mid-’90s and still in use today. Researchers at Cisco’s security research arm, Cisco Talos, identified the vulnerability calling it as a classic heap-spray exploit. In a report...

6.8CVSS1.2AI score0.03228EPSS
Exploits1References1
exploitpack
exploitpack
added 2010/05/07 12:0 a.m.22 views

ESET Smart Security 4.2 and NOD32 AntiVirus 4.2 (x86x64) - LZH archive parsing (PoC)

ESET Smart Security 4.2 and NOD32 AntiVirus 4.2 x86x64 - LZH archive parsing PoC ESET Smart Security 4.2 and NOD32 Antivirus 4.2 x32-x64 LZH archive parsing PoC exploit. Scanning of malicious file causes heap corruption in context of the service process ekrn.exe. See Dr. Watson log drwtsn32.log f...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2010/05/07 12:0 a.m.29 views

ESET Smart Security LZH archive parsing vulnerability

Software: ESET Smart Security 4.2 and NOD32 Antivirus 4.2 x32-x64 Vendor status: notified/ignored Tested on: Windows XP, Vista, 7 x32 and x64 Description: Scanning of malicious file causes heap corruption in context of the service process ekrn.exe. See Dr. Watson log drwtsn32.log for details. PoC...

1.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/05/07 12:0 a.m.44 views

ESET Smart Security 4.2 and NOD32 AntiVirus 4.2 (x86/x64) - LZH archive parsing (PoC)

ESET Smart Security 4.2 and NOD32 Antivirus 4.2 x32-x64 LZH archive parsing PoC exploit. Scanning of malicious file causes heap corruption in context of the service process ekrn.exe. See Dr. Watson log drwtsn32.log for details. USAGE: python esetlzh.py TEST.LZH will be created c 2010 eSage Lab...

7.4AI score
Exploits0
Prion
Prion
added 2007/11/30 12:46 a.m.14 views

Buffer overflow

Buffer overflow in Lhaplus 1.55 and earlier allows remote attackers to execute arbitrary code via a crafted LZH archive, a different vector than CVE-2007-5048...

6.6CVSS8.1AI score0.04119EPSS
Exploits1References7Affected Software1
NVD
NVD
added 2007/11/30 12:46 a.m.16 views

CVE-2007-6175

Buffer overflow in Lhaplus 1.55 and earlier allows remote attackers to execute arbitrary code via a crafted LZH archive, a different vector than CVE-2007-5048...

6.6CVSS7.7AI score0.03456EPSS
Exploits0References7
Cvelist
Cvelist
added 2007/11/30 12:0 a.m.24 views

CVE-2007-6175

Buffer overflow in Lhaplus 1.55 and earlier allows remote attackers to execute arbitrary code via a crafted LZH archive, a different vector than CVE-2007-5048...

7.7AI score0.03456EPSS
Exploits0References7
CVE
CVE
added 2007/11/30 12:0 a.m.41 views

CVE-2007-6175

CVE-2007-6175 affects Lhaplus 1.55 and earlier. A buffer overflow in LZH archive handling could allow remote attackers to execute arbitrary code when decompressing a crafted LZH file. Connected documents corroborate a vulnerable Lhaplus prior to 1.55 and note this is a separate issue from CVE-200...

6.6CVSS7.7AI score0.03456EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2007/07/03 10:30 a.m.26 views

CVE-2007-3512

Stack-based buffer overflow in Lhaca File Archiver before 1.22 allows user-assisted remote attackers to execute arbitrary code via a large LHA "Extended Header Size" value in an LZH archive, a different issue than CVE-2007-3375...

9.3CVSS7.9AI score0.04613EPSS
Exploits0References6
Prion
Prion
added 2007/07/03 10:30 a.m.22 views

Stack overflow

Stack-based buffer overflow in Lhaca File Archiver before 1.22 allows user-assisted remote attackers to execute arbitrary code via a large LHA "Extended Header Size" value in an LZH archive, a different issue than CVE-2007-3375...

9.3CVSS8.3AI score0.04698EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder