Network Security News – Sunday, October 23, 2005 Events
ZipGenius ZIP Archive Filename Overflow
A remote overflow exists in ZipGenius. "zipgenius.exe", "zg.exe", "zgtips.dll",
and "contmenu.dll" fail to perform proper bounds checking, resulting in a stack-based buffer overflow. With a specially crafted ZIP archive containing a compressed file with an overly long filename, an attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/20157
ZipGenius zipgenius.exe UUE/XXE/MIM Archive Filename Overflow
A remote overflow exists in ZipGenius. "zipgenius.exe" fails to perform proper bounds checking, resulting in a stack-based buffer overflow. With a specially crafted UUE/XXE/MIM archive containing an encoded file with an overly long filename, an attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/20158
ZipGenius unacev2.dll ACE Archive Filename Overflow
A remote overflow exists in ZipGenius. The library "unacev2.dll" fails to perform proper bounds checking, resulting in a stack-based buffer overflow. With a specially crafted ACE archive containing a compressed file with an overly long filename, an attacker can cause arbitrary code execution resulting in a loss of integrity.. Read more at osvdb.org/20159
BMV PS File Page Handling openpsfile() Function Local Overflow
A local overflow exists in BMV. BMV fails to allocate memory to store the file offsets of each page in a PS file resulting in a integer overflow. With a specially crafted postscript file an attacker can execute arbitrary code resulting in a loss of integrity.. Read more at osvdb.org/20118
Leave a Reply