CVE-2007-4547

Name of the Vulnerable Software and Affected Versions Unreal Commander version 0.92 build 565 Unreal Commander version 0.92 build 573

Description The issue allows user-assisted attackers to obtain sensitive information, such as memory contents, by reading extracted files. This can occur when extracting from an archive with malformed size information in a file header. The extracted files may contain portions of heap memory. This issue is only considered a vulnerability if Unreal Commander is run with privileges or if the extracted files are made accessible to other users.

Recommendations For Unreal Commander version 0.92 build 565, avoid running the software with privileges and restrict access to extracted files to prevent other users from accessing potentially sensitive information. For Unreal Commander version 0.92 build 573, avoid running the software with privileges and restrict access to extracted files to prevent other users from accessing potentially sensitive information.