CVE-2007-6537

Name of the Vulnerable Software and Affected Versions WinUAE versions 1.4.4 and earlier

Description A stack-based buffer overflow issue exists in the zfile gunzip function, allowing user-assisted remote attackers to execute arbitrary code via a long filename in a gzipped archive. The affected archive types include gz, adz, roz, and hdz archives in a compressed floppy disk image.

Recommendations For WinUAE versions 1.4.4 and earlier, consider updating to a newer version that contains a fix for this issue, as using a long filename in a gzipped archive could lead to arbitrary code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.