CVE-2007-3375

Name of the Vulnerable Software and Affected Versions Lhaca File Archiver versions prior to 1.21

Description A stack-based buffer overflow issue allows user-assisted remote attackers to execute arbitrary code via a crafted LZH archive. This issue has been exploited by malware, such as Trojan.Lhdropper.

Recommendations For versions prior to 1.21, update to version 1.21 or later to resolve the issue. As a temporary workaround, consider avoiding the use of crafted LZH archives until the issue is resolved. Restrict access to untrusted LZH archives to minimize the risk of exploitation.