PowerZip Stack Buffer Overflow Vulnerability Network Vulnerability

Summary

This host is running PowerZip and is prone to Stack Buffer Overflow Vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary codes via specially crafted archive 'zip' files. Impact level: System/Application

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one For updates refer to http://www.powerzip.biz

Insight

Flaw is due to improper sanitization check for the compressed archive 'zip' file and may lead to stack based buffer overflow.

Affected

PowerZip Version 7.20 or prior.

Severity

Classification

CVE CVE-2009-1059
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

CTorrent/Enhanced CTorrent Buffer Overflow Vulnerability
Adobe Flash Player Buffer Overflow Vulnerability (Mac OS X)
Asterisk HTTP Manager Buffer Overflow Vulnerability
CA ARCserve Backup Multiple Bufffer Overflow Vulnerabilities
Apple QuickTime Multiple Buffer Overflow Vulnerabilities (Windows)

Take action and discover your vulnerabilities