Описание
Stack-based buffer overflow in DZIPS32.DLL 6.0.0.4 in ConeXware PowerArchiver 9.62.03 allows user-assisted attackers to execute arbitrary code by adding a new file to a crafted ZIP archive that already contains a file with a long name.
Ссылки
- Vendor Advisory
- ExploitPatch
- PatchVendor Advisory
- Patch
- Vendor Advisory
- Vendor Advisory
- ExploitPatch
- PatchVendor Advisory
- Patch
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.62.03 (включая)
Одно из
cpe:2.3:a:conexware:powerarchiver:*:*:*:*:*:*:*:*
cpe:2.3:a:conexware:powerarchiver:8.10:*:*:*:*:*:*:*
cpe:2.3:a:conexware:powerarchiver:8.60:*:*:*:*:*:*:*
cpe:2.3:a:conexware:powerarchiver:9.5_beta_4:*:*:*:*:*:*:*
cpe:2.3:a:conexware:powerarchiver:9.5_beta_5:*:*:*:*:*:*:*
cpe:2.3:a:conexware:powerarchiver:9.25:*:*:*:*:*:*:*
EPSS
Процентиль: 88%
0.03643
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Stack-based buffer overflow in DZIPS32.DLL 6.0.0.4 in ConeXware PowerArchiver 9.62.03 allows user-assisted attackers to execute arbitrary code by adding a new file to a crafted ZIP archive that already contains a file with a long name.
EPSS
Процентиль: 88%
0.03643
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-119