CVE-2006-0890

CVE-2006-0890 describes a directory traversal vulnerability in SpeedProject Squeez 5.1, used by ZipStar 5.1 and SpeedCommander 11.01.4450. The flaw allows remote attackers to overwrite arbitrary files via unspecified manipulations in a (1) JAR or (2) ZIP archive. The underlying issue is a directo...

SpeedCommander 11.0 & ZipStar 5.1 & Squeez 5.1 Directory traversal

SpeedCommander 11.0 & ZipStar 5.1 & Squeez 5.1 Directory traversal The StuffIt and ZipMagic Family of products is designed to meet any level of compression needs; from basic expansion to advanced archive manipulation, to automating routine compression tasks, and even building compression into a...

KLA10339 WLF vulnerability in SpeedProject

A directory traversal vulnerability was found in SpeedProject products. By exploiting this vulnerability malicious users can overwrite local files. This vulnerability can be exploited remotely at a point related to the JAR and ZIP archives. Original advisories - Related products...

CVE-2005-3831

The CVE-2005-3831 issue is a stack-based buffer overflow in two DLLs, CxZIP60.dll and CxZIP60u.dll, used by SpeedProject products (ZipStar 5.0 Build 4285, Squeez 5.0 Build 4285, SpeedCommander 11.0 Build 4430 and 10.51 Build 4430). The overflow is triggered by processing a ZIP archive containing ...

CVE-2005-3831

Stack-based buffer overflow in 1 CxZIP60.dll and 2 CxZIP60u.dll, as used in SpeedProject products including a ZipStar 5.0 Build 4285, b Squeez 5.0 Build 4285, and c SpeedCommander 11.0 Build 4430 and 10.51 Build 4430, allows user-assisted attackers to execute arbitrary code via a ZIP archive...