Описание
Buffer overflow in the UUDeview package, as used in WinZip 6.2 through WinZip 8.1 SR-1, and possibly other packages, allows remote attackers to execute arbitrary code via a MIME archive with certain long MIME parameters.
Ссылки
- Third Party AdvisoryUS Government Resource
- ExploitPatchVendor Advisory
- Third Party AdvisoryUS Government Resource
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:openpkg:openpkg:*:*:*:*:*:*:*:*
cpe:2.3:a:uudeview:uudeview:0.5.18:*:*:*:*:*:*:*
cpe:2.3:a:uudeview:uudeview:0.5.19:*:*:*:*:*:*:*
cpe:2.3:a:winzip:winzip:7.0:*:*:*:*:*:*:*
cpe:2.3:a:winzip:winzip:8.0:*:*:*:*:*:*:*
cpe:2.3:a:winzip:winzip:8.1:*:*:*:*:*:*:*
cpe:2.3:a:winzip:winzip:8.1:sr1:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:1.4:rc1:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:1.4:rc2:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:1.4:rc3:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.63008
Средний
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
больше 20 лет назад
Buffer overflow in the UUDeview package, as used in WinZip 6.2 through ...
github
больше 3 лет назад
Buffer overflow in the UUDeview package, as used in WinZip 6.2 through WinZip 8.1 SR-1, and possibly other packages, allows remote attackers to execute arbitrary code via a MIME archive with certain long MIME parameters.
EPSS
Процентиль: 98%
0.63008
Средний
10 Critical
CVSS2
Дефекты
NVD-CWE-Other