Описание
Multiple stack-based buffer overflows in PowerArchiver 8.10 through 9.5 Beta 4 and Beta 5 allow remote attackers to execute arbitrary code via a long filename in a (1) ACE or (2) ARJ archive.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Patch
- Vendor Advisory
- Vendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:powerarchiver:powerarchiver_2002:8.10:*:*:*:*:*:*:*
cpe:2.3:a:powerarchiver:powerarchiver_2003:8.60:*:*:*:*:*:*:*
cpe:2.3:a:powerarchiver:powerarchiver_2004:9.25:*:*:*:*:*:*:*
cpe:2.3:a:powerarchiver:powerarchiver_2006:9.5_beta_4:*:*:*:*:*:*:*
cpe:2.3:a:powerarchiver:powerarchiver_2006:9.5_beta_5:*:*:*:*:*:*:*
EPSS
Процентиль: 88%
0.0385
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Multiple stack-based buffer overflows in PowerArchiver 8.10 through 9.5 Beta 4 and Beta 5 allow remote attackers to execute arbitrary code via a long filename in a (1) ACE or (2) ARJ archive.
EPSS
Процентиль: 88%
0.0385
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other