Wednesday, January 17, 2007 10:29 AM cmosby

National Vulnerability Database (CVE-2007-0264) - Buffer overflow in Winzip32.exe in WinZip 9.0 SR-1

Vulnerability Summary CVE-2007-0264
Original release date: 1/16/2007
Last revised: 1/17/2007
Source: US-CERT/NIST

 Overview
Buffer overflow in Winzip32.exe in WinZip 9.0 SR-1 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long command line argument. NOTE: this issue may cross privilege boundaries if an application automatically invokes Winzip32.exe for untrusted input filenames, as in the case of a file upload application. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information. 
 

Impact
CVSS Severity: 8.0 (High)
Range: Locally exploitable , Victim must voluntarily interact with attack mechanism
Authentication: Not required to exploit
Impact Type: Provides administrator access , Allows disruption of service 
 
References to Advisories, Solutions, and Tools

External Source:  BID (disclaimer)

Name: 22020

Hyperlink: http://www.securityfocus.com/bid/22020

Vulnerable software and versions
WinZip, WinZip, 9.0 SR-1

Technical Details
CVSS Base Score Vector: (AV:R/AC:H/Au:NR/C:C/I:C/A:C/B:N) (legend)
Vulnerability Type: Buffer Overflow  

CVE Standard Vulnerability Entry:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0264

National Vulnerability Database (CVE-2007-0264).

Filed under: , ,

Comments

# Chris Mosby (myITforum): National Vulnerability Database (CVE-2007-0264) - Buffer overflow in Winzip32.exe in WinZip 9.0 SR-1

Wednesday, January 17, 2007 1:30 PM by Andrew Berges at myITforum.com

Vulnerability Summary CVE-2007-0264 Original release date: 1/16/2007 Last revised: 1/17/2007 Source: