[vuln.sg] Vulnerability Research Advisory

Lhaplus LHA Extended Header Handling Buffer Overflow Vulnerability

by Tan Chew Keong

Release Date: 2006-07-31

Summary

-------

A vulnerability has been found in Lhaplus. When exploited, the vulnerability allows execution of arbitrary code when the user extracts a malicious LZH archive.

Tested Version

--------------

Lhaplus version 1.52 (Japanese)

Details

-------

http://vuln.sg/lhaplus152-en.html

[ reply ]