Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0947

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0947
Last Modified 05 Sep 2008 04:39:53
Published 09 Feb 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0947

Summary

Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long filenames.

Vulnerable Systems

Operating System

  • Gentoo Linux

  • Suse Linux 9.0

  • Suse Linux 9.1

  • Suse Linux 9.2

Application

  • Arj Software Inc. Unarj 2.62

  • Arj Software Inc. Unarj 2.63 A

  • Arj Software Inc. Unarj 2.64

  • Arj Software Inc. Unarj 2.65


References

BID - 11665

GENTOO - GLSA-200411-29

XF - unarj-longfilename-bo(18044)

REDHAT - RHSA-2005:007

DEBIAN - DSA-652

FEDORA - FLSA:2272


Last Updated: 27 May 2016 10:38:49