Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to execute arbitrary code via a long filename in a ZIP archive during a (1) Fix (aka Repair), (2) Add, (3) Update, or (4) Freshen action, a related issue to CVE-2006-3985.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2009-04-13T16:00:00
Updated: 2009-04-16T09:00:00
Reserved: 2008-10-03T00:00:00
Link: CVE-2008-4420
JSON object: View
NVD Information
Status : Modified
Published: 2009-04-13T16:30:00.203
Modified: 2019-10-09T22:56:34.440
Link: CVE-2008-4420
JSON object: View
Redhat Information
No data.
CWE