CVE-2006-3901

Name of the Vulnerable Software and Affected Versions Tumbleweed Email Firewall (EMF) (affected versions not specified)

Description The issue allows remote attackers to execute arbitrary code via an email attachment with an LHA archive. This can occur in several scenarios, including when the LHA archive contains a file or directory with a long LHA extended header, when the "temporary pathname" field for decompressed output is greater than 2 bytes, or when the LHA archive has a long filename.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.