CVE-2006-2909

CVE-2006-2909 describes a stack-based buffer overflow in PicoZip 4.01’s info tip shell extension (zipinfo.dll) that can be triggered when a user hovers over an ACE, RAR, or ZIP archive containing a very long filename. The vulnerability allows remote code execution under the user’s privileges and ...

Secunia Research: PicoZip "zipinfo.dll" Multiple Archives Buffer Overflow

====================================================================== Secunia Research 14/06/2006 - PicoZip "zipinfo.dll" Multiple Archives Buffer Overflow - ====================================================================== Table of Contents Affected...

PicoZip ZipInfo.dll Filename Handling Buffer Overflow

The remote host is running PicoZip, a file compression utility for Windows. According to the registry, the version of PicoZip installed on the remote Windows host fails to properly check the size of filenames before copying them into a finite-sized buffer within the 'zipinfo.dll' info tip shell...

Pico Zip 4.01 (Long Filename) Buffer Overflow Exploit

Exploit for unknown platform in category local exploits ===================================================== Pico Zip 4.01 Long Filename Buffer Overflow Exploit ===================================================== !/usr/bin/perl Pico Zip v. 4.01 Long Filename Buffer Overflow Original advisory -...

PicoZip zipinfo.dll buffer overflow

Buffer overflow on oversized filenames in different archivers formats...