Stack consumption vulnerability in AkkyWareHOUSE 7-zip32.dll before 4.42.00.04, as derived from Igor Pavlov 7-Zip before 4.53 beta, allows user-assisted remote attackers to execute arbitrary code via a long filename in an archive, leading to a heap-based buffer overflow.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:36
Type | Values Removed | Values Added |
---|---|---|
References | () http://akky.cjb.net/security/7-zip3.txt - Broken Link | |
References | () http://jvn.jp/jp/JVN%2362868899/index.html - Third Party Advisory | |
References | () http://osvdb.org/40482 - Broken Link | |
References | () http://secunia.com/advisories/26624 - Third Party Advisory | |
References | () http://sourceforge.net/project/shownotes.php?release_id=535160&group_id=14481 - Product, Third Party Advisory | |
References | () http://www.securityfocus.com/bid/25545 - Third Party Advisory, VDB Entry | |
References | () http://www.vupen.com/english/advisories/2007/3086 - Third Party Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/36459 - Third Party Advisory, VDB Entry |
Information
Published : 2007-09-05 19:17
Updated : 2024-11-21 00:36
NVD link : CVE-2007-4725
Mitre link : CVE-2007-4725
CVE.ORG link : CVE-2007-4725
JSON object : View
Products Affected
7-zip
- 7-zip
CWE
CWE-400
Uncontrolled Resource Consumption