PT-2005-5332 · Info Zip+1 · Unzip+1

C0Ntex

Published

2005-12-31

Updated

2018-10-19

CVE-2005-4667

CVSS v2.0

3.7

Low

Vector

AV:L/AC:H/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions UnZip versions 5.50 and earlier

Description The issue allows user-assisted attackers to execute arbitrary code via a long filename command line argument. However, since the overflow occurs in a non-setuid program, the risk is relatively low unless UnZip is passed long arguments when invoked from other programs.

Recommendations For UnZip versions 5.50 and earlier, consider avoiding the use of long filename command line arguments until a fix is available. As a temporary workaround, restrict the length of filename arguments passed to UnZip to prevent potential exploitation.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2005-4667

DSA-1012-1

RHSA-2007:0203

RHSA-2007_0203

Affected Products

Red Hat

Unzip

PT-2005-5332 · Info Zip+1 · Unzip+1

CVE-2005-4667

Weakness Enumeration

Related Identifiers

Affected Products

References · 21