CVE-2007-0264

Name of the Vulnerable Software and Affected Versions WinZip version 9.0

Description A buffer overflow issue in Winzip32.exe allows local users to cause a denial of service, potentially leading to an application crash, and may also enable the execution of arbitrary code via a long command line argument. This issue could potentially cross privilege boundaries if an application automatically invokes Winzip32.exe for untrusted input filenames.

Recommendations For WinZip version 9.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.