Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4779

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-4779
Last Modified 07 Mar 2011 10:13:17
Published 29 Oct 2008 10:22:38
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4779

Summary

Stack-based buffer overflow in TUGzip 3.5.0.0 allows remote attackers to denial of service (crash) or execute arbitrary code via a long filename in a .zip file.

Vulnerable Systems

Application

  • Tguzip 3.5.5.0.0


References

XF - tugzip-zip-bo(46120)

VUPEN - ADV-2008-2918

BID - 31913

MILW0RM - 6831

SREASON - 4528

SECUNIA - 32411


Last Updated: 27 May 2016 10:48:38