17 matches found
EUVD-2007-2053
Malware in sbrugna...
EUVD-2007-2529
Malware in sbrugna...
CVE-2007-2536
PicoZip allows remote attackers to cause a denial of service infinite loop via a ZOO archive with a direntry structure that points to a previous file...
Design/Logic Flaw
PicoZip allows remote attackers to cause a denial of service infinite loop via a ZOO archive with a direntry structure that points to a previous file...
CVE-2007-2536
PicoZip allows remote attackers to cause a denial of service infinite loop via a ZOO archive with a direntry structure that points to a previous file...
CVE-2007-2536
CVE-2007-2536 concerns PicoZip, where a crafted ZOO archive with a direntry pointing to a previous file can trigger a denial of service via infinite looping. The description explicitly states the vulnerability scenario and impact as a DoS. The connected documents corroborate the affected product ...
Directory traversal
Directory traversal vulnerability in Acubix PicoZip 4.02 allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in the file path in an 1 GZ, 2 TAR, 3 RAR, 4 JAR, or 5 ZIP archive...
CVE-2007-2058
Directory traversal vulnerability in Acubix PicoZip 4.02 allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in the file path in an 1 GZ, 2 TAR, 3 RAR, 4 JAR, or 5 ZIP archive...
CVE-2007-2058
CVE-2007-2058 = Directory traversal in Acubix PicoZip 4.02. Processing archives (GZ, TAR, RAR, JAR, ZIP) allows a user-assisted remote attacker to overwrite arbitrary files via a .. sequence in file paths within the archive. Based on NVD metrics, impact is partial confidentiality, integrity, and ...
CVE-2007-2058
Directory traversal vulnerability in Acubix PicoZip 4.02 allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in the file path in an 1 GZ, 2 TAR, 3 RAR, 4 JAR, or 5 ZIP archive...
CVE-2006-2909
Stack-based buffer overflow in the info tip shell extension zipinfo.dll in PicoZip 4.01 allows remote attackers to execute arbitrary code via a long filename in an 1 ACE, 2 RAR, or 3 ZIP archive, which is triggered when the user moves the mouse over the archive...
Stack overflow
Stack-based buffer overflow in the info tip shell extension zipinfo.dll in PicoZip 4.01 allows remote attackers to execute arbitrary code via a long filename in an 1 ACE, 2 RAR, or 3 ZIP archive, which is triggered when the user moves the mouse over the archive...
CVE-2006-2909
CVE-2006-2909 describes a stack-based buffer overflow in PicoZip 4.01’s info tip shell extension (zipinfo.dll) that can be triggered when a user hovers over an ACE, RAR, or ZIP archive containing a very long filename. The vulnerability allows remote code execution under the user’s privileges and ...
CVE-2006-2909
Stack-based buffer overflow in the info tip shell extension zipinfo.dll in PicoZip 4.01 allows remote attackers to execute arbitrary code via a long filename in an 1 ACE, 2 RAR, or 3 ZIP archive, which is triggered when the user moves the mouse over the archive...
Secunia Research: PicoZip "zipinfo.dll" Multiple Archives Buffer Overflow
====================================================================== Secunia Research 14/06/2006 - PicoZip "zipinfo.dll" Multiple Archives Buffer Overflow - ====================================================================== Table of Contents Affected...
PicoZip ZipInfo.dll Filename Handling Buffer Overflow
The remote host is running PicoZip, a file compression utility for Windows. According to the registry, the version of PicoZip installed on the remote Windows host fails to properly check the size of filenames before copying them into a finite-sized buffer within the 'zipinfo.dll' info tip shell...
PicoZip zipinfo.dll buffer overflow
Buffer overflow on oversized filenames in different archivers formats...