CVE-2007-1614

Name of the Vulnerable Software and Affected Versions ZZIPlib Library versions prior to 0.13.49

Description The issue is a stack-based buffer overflow in the zzip open shared io function, located in zzip/file.c. This allows user-assisted remote attackers to potentially cause a denial of service, resulting in an application crash, or execute arbitrary code via a long filename.

Recommendations For versions prior to 0.13.49, update to version 0.13.49 or later to resolve the issue. As a temporary workaround, consider restricting the use of long filenames to minimize the risk of exploitation.