CVE-2004-0769

Name of the Vulnerable Software and Affected Versions LHA versions (affected versions not specified) lha-1.00

Description The issue is related to a buffer overflow in LHA, allowing remote attackers to execute arbitrary code via long pathnames in LHarc format 2 headers for a .LHZ archive. This can be exploited through various options. Multiple vulnerabilities in the lha package may lead to breaches of confidentiality, integrity, and availability of protected information, and can be exploited remotely.

Recommendations For LHA, update the header.c file to fix the buffer overflow issue. For lha-1.00, at the moment, there is no information about a newer version that contains a fix for this vulnerability.