AkkyWareHOUSE 7-zip32.dll Heap-Based Buffer Overflow Vulnerability
BID:25545
Info
AkkyWareHOUSE 7-zip32.dll Heap-Based Buffer Overflow Vulnerability
| Bugtraq ID: | 25545 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-4725 |
| Remote: | No |
| Local: | Yes |
| Published: | Sep 05 2007 12:00AM |
| Updated: | Apr 16 2015 06:09PM |
| Credit: | JVN disclosed this vulnerability. |
| Vulnerable: |
AkkyWareHOUSE 7-zip32.dll 4.42 .03 |
| Not Vulnerable: |
AkkyWareHOUSE 7-zip32.dll 4.42 .04 |
Discussion
AkkyWareHOUSE 7-zip32.dll Heap-Based Buffer Overflow Vulnerability
AkkyWareHOUSE 7-zip32.dll is prone to a heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input.
Attackers may be able to execute arbitrary machine code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions.
Versions prior to 7-zip32.dll 4.42.00.04 are vulnerable.
AkkyWareHOUSE 7-zip32.dll is prone to a heap-based buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input.
Attackers may be able to execute arbitrary machine code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions.
Versions prior to 7-zip32.dll 4.42.00.04 are vulnerable.
Exploit / POC
AkkyWareHOUSE 7-zip32.dll Heap-Based Buffer Overflow Vulnerability
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
AkkyWareHOUSE 7-zip32.dll Heap-Based Buffer Overflow Vulnerability
Solution:
The vendor released 7-zip32.dll 4.42.00.04 to address this issue. Please see the references for more information.
AkkyWareHOUSE 7-zip32.dll 4.42 .03
Solution:
The vendor released 7-zip32.dll 4.42.00.04 to address this issue. Please see the references for more information.
AkkyWareHOUSE 7-zip32.dll 4.42 .03
-
AkkyWareHOUSE 7-zip32
http://akky.cjb.net/cgi-bin/download.cgi?7-zip32
References
AkkyWareHOUSE 7-zip32.dll Heap-Based Buffer Overflow Vulnerability
References:
References:
- 7-zip32.dll Release Notes (AkkyWareHOUSE)
- Vendor Homepage (AkkyWareHOUSE)