Title : 7-Zip ARJ Archive Handling Client-Side Buffer Overflow Vulnerability VUPEN ID : VUPEN/ADV-2005-1827 CVE ID : CVE-2005-3051 CWE ID : CWE-
Rated as : Moderate Risk
Remotely Exploitable : No Locally Exploitable : Yes Release Date : 2005-09-23
Technical Description
A vulnerability was identified in 7-Zip, which may be exploited by attackers to execute arbitrary code. This flaw is due to a stack overflow error when handling ARJ blocks larger than 2600 bytes, which could be exploited by remote attackers to compromise a vulnerable system by convincing a user to open a specially crafted ARJ file.
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback If you have additional information or corrections for this security advisory please submit them via our contact form.
