Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:9675
HistorySep 09, 2005 - 12:00 a.m.

Secunia Research: ALZip ACE Archive Handling Buffer Overflow

2005-09-0900:00:00
vulners.com
11
JSON

======================================================================

                 Secunia Research 07/09/2005

       - ALZip ACE Archive Handling Buffer Overflow -

======================================================================
Table of Contents

Affected Software…1
Severity…2
Description of Vulnerability…3
Solution…4
Time Table…5
Credits…6
References…7
About Secunia…8
Verification…9

======================================================================
1) Affected Software

ALZip v6.11 (Korean) (And all prior Korean versions)
ALZip v5.52 (All language versions)
ALZip v5.51 (All language versions)
ALZip v6.03 (English)
ALZip v6.1 beta

======================================================================
2) Severity

Rating: Moderately Critical
Impact: System access
Where: Remote

======================================================================
3) Description of Vulnerability

Secunia Research has discovered a vulnerability in ALZip, which can
be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to a boundary error in UNACEV2.DLL
when extracting an ACE archive containing a file with an overly long
filename and can cause a stack-based buffer overflow. This can be
exploited to execute arbitrary code when the user extracts a
specially crafted ACE archive.

The vulnerability is related to:
http://secunia.com/SA14359

======================================================================
4) Solution

Update to the fixed versions.

International Versions:
Update to version 6.1

Korean Version:
Update to version 6.12

======================================================================
5) Time Table

22/08/2005 - Initial vendor notification.
22/08/2005 - Initial vendor reply.
05/09/2005 - Notified by vendor that fixed versions have been
released.
07/09/2005 - Public disclosure.

======================================================================
6) Credits

Discovered by Tan Chew Keong, Secunia Research.

======================================================================
7) References

No references available.

======================================================================
8) About Secunia

Secunia collects, validates, assesses, and writes advisories regarding
all the latest software vulnerabilities disclosed to the public. These
advisories are gathered in a publicly available database at the
Secunia website:

http://secunia.com/

Secunia offers services to our customers enabling them to receive all
relevant vulnerability information to their specific system
configuration.

Secunia offers a FREE mailing list called Secunia Security Advisories:

http://secunia.com/secunia_security_advisories/

======================================================================
9) Verification

Please verify this advisory by visiting the Secunia website:
http://secunia.com/secunia_research/2005-41/advisory/

Complete list of vulnerability reports published by Secunia Research:
http://secunia.com/secunia_research/

======================================================================

JSON