[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-disclosure] [vuln.sg] Lhaplus LHA Extended Header Handling Buffer Overflow Vulnerability
- To: full-disclosure@xxxxxxxxxxxxxxxxx
- Subject: [Full-disclosure] [vuln.sg] Lhaplus LHA Extended Header Handling Buffer Overflow Vulnerability
- From: TAN Chew Keong <vulnpost-remove@xxxxxxx>
- Date: Tue, 01 Aug 2006 08:53:27 +0800
[vuln.sg] Vulnerability Research Advisory
Lhaplus LHA Extended Header Handling Buffer Overflow Vulnerability
by Tan Chew Keong
Release Date: 2006-07-31
Summary
-------
A vulnerability has been found in Lhaplus. When exploited, the
vulnerability allows execution of arbitrary code when the user extracts
a malicious LZH archive.
Tested Version
--------------
Lhaplus version 1.52 (Japanese)
Details
-------
http://vuln.sg/lhaplus152-en.html
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/