Описание
Stack-based buffer overflow in Lhaca File Archiver before 1.21 allows user-assisted remote attackers to execute arbitrary code via a crafted LZH archive, as exploited by malware such as Trojan.Lhdropper.
Ссылки
- Vendor Advisory
- US Government Resource
- Vendor Advisory
- US Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 1.20 (включая)
cpe:2.3:a:lhaca:file_archiver:*:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.08251
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-119
Связанные уязвимости
redhat
больше 18 лет назад
Stack-based buffer overflow in Lhaca File Archiver before 1.21 allows user-assisted remote attackers to execute arbitrary code via a crafted LZH archive, as exploited by malware such as Trojan.Lhdropper.
github
больше 3 лет назад
Stack-based buffer overflow in Lhaca File Archiver before 1.21 allows user-assisted remote attackers to execute arbitrary code via a crafted LZH archive, as exploited by malware such as Trojan.Lhdropper.
EPSS
Процентиль: 92%
0.08251
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-119