Vulnerability Details CVE-2007-3512
Stack-based buffer overflow in Lhaca File Archiver before 1.22 allows user-assisted remote attackers to execute arbitrary code via a large LHA "Extended Header Size" value in an LZH archive, a different issue than CVE-2007-3375.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.096
EPSS Ranking 92.4%
CVSS Severity
CVSS v2 Score 9.3
References
- http://osvdb.org/37802
- http://park8.wakwak.com/~app/Lhaca/overflow.html
- http://secunia.com/advisories/25797
- http://vuln.sg/lhaca121-en.html
- http://www.vupen.com/english/advisories/2007/2399
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35297
- http://osvdb.org/37802
- http://park8.wakwak.com/~app/Lhaca/overflow.html
- http://secunia.com/advisories/25797
- http://vuln.sg/lhaca121-en.html
- http://www.vupen.com/english/advisories/2007/2399
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35297
Products affected by CVE-2007-3512
-
cpe:2.3:a:wakwak:lhaca_file_archiver:*