Buffer overflow in the extract_one function from lhext.c in LHA may allow attackers to execute arbitrary code via a long w (working directory) command line option, a different issue than CVE-2004-0769. NOTE: this issue may be REJECTED if there are not any cases in which LHA is setuid or is otherwise used across security boundaries.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Lha | Tsugio_okamoto | 1.14 (including) | 1.14 (including) |
Lha | Tsugio_okamoto | 1.15 (including) | 1.15 (including) |
Lha | Tsugio_okamoto | 1.17 (including) | 1.17 (including) |
Red Hat Enterprise Linux 3 | RedHat | lha-0:1.14i-10.4 | * |
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 | RedHat | * | |
Red Hat Enterprise Linux ES version 2.1 | RedHat | * | |
Red Hat Enterprise Linux WS version 2.1 | RedHat | * | |
Red Hat Linux Advanced Workstation 2.1 | RedHat | * | |
Lha | Ubuntu | dapper | * |
Lha | Ubuntu | devel | * |
Lha | Ubuntu | edgy | * |
Lha | Ubuntu | feisty | * |