Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when using recursive folder compression, allows remote attackers to execute arbitrary code via a ZIP file containing a long pathname.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Zip | Info-zip | 2.3 (including) | 2.3 (including) |
Red Hat Enterprise Linux 3 | RedHat | zip-0:2.3-16.1 | * |
Zip | Ubuntu | dapper | * |
Zip | Ubuntu | devel | * |
Zip | Ubuntu | edgy | * |
Zip | Ubuntu | feisty | * |