Vulnerability Details CVE-2005-3061
Multiple stack-based buffer overflows in PowerArchiver 8.10 through 9.5 Beta 4 and Beta 5 allow remote attackers to execute arbitrary code via a long filename in a (1) ACE or (2) ARJ archive.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.038
EPSS Ranking 87.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=112748874211458&w=2
- http://secunia.com/advisories/16713/
- http://secunia.com/secunia_research/2005-50/advisory/
- http://securityreason.com/securityalert/23
- http://www.securityfocus.com/bid/14922
- http://marc.info/?l=bugtraq&m=112748874211458&w=2
- http://secunia.com/advisories/16713/
- http://secunia.com/secunia_research/2005-50/advisory/
- http://securityreason.com/securityalert/23
- http://www.securityfocus.com/bid/14922
Products affected by CVE-2005-3061
-
cpe:2.3:a:powerarchiver:powerarchiver_2002:8.10
-
cpe:2.3:a:powerarchiver:powerarchiver_2003:8.60
-
cpe:2.3:a:powerarchiver:powerarchiver_2004:9.25
-
cpe:2.3:a:powerarchiver:powerarchiver_2006:9.5_beta_4
-
cpe:2.3:a:powerarchiver:powerarchiver_2006:9.5_beta_5