Multiple LHA Buffer Overflow/Directory Traversal Vulnerabilities

Bugtraq ID: 10243
Class: Unknown
CVE: CVE-2004-0234
Remote: Yes
Local: No
Published: Apr 30 2004 12:00AM
Updated: Mar 19 2015 08:30AM
Credit: Discovery of these vulnerabilities has been credited to Ulf Harnhammar.
Vulnerable: WinZip WinZip 9.0
Stalker CGPMcAfee 3.2
SGI ProPack 3.0
SGI ProPack 2.4
Redhat Linux 7.3 i686
Redhat Linux 7.3 i386
Redhat Linux 7.3
Redhat lha-1.14i-9.i386.rpm
Redhat Fedora Core1
RARLAB WinRar 3.20
Mr. S.K. LHA 1.17
Mr. S.K. LHA 1.15
Mr. S.K. LHA 1.14
McAfee WebShield SMTP 4.5
McAfee Webshield Appliances
McAfee VirusScan Professional
McAfee VirusScan for NetApp
McAfee VirusScan Enterprise 8.0 i
McAfee VirusScan Command Line
McAfee VirusScan 9.0
McAfee VirusScan 8.0
McAfee VirusScan 7.1
McAfee VirusScan 7.0
McAfee VirusScan 6.0
McAfee VirusScan 5.0
McAfee VirusScan 4.5.1
McAfee VirusScan 4.5
McAfee VirusScan 4.0.3
McAfee VirusScan 4.0
McAfee VirusScan 3.0
McAfee VirusScan 2.0
McAfee VirusScan 1.0
McAfee Virex
McAfee SecurityShield for Microsoft ISA Server
McAfee PortalShield for Microsoft SharePoint
McAfee NetShield for Netware
McAfee Managed VirusScan
McAfee Linuxshield 0
McAfee Internet Security Suite
McAfee GroupShield for Mail Servers with ePO
McAfee GroupShield for Lotus Domino
McAfee Groupshield For Exchange 5.5
McAfee ASaP VirusScan 0
McAfee Active Virus Defense SMB Edition
McAfee Active Threat Protection
McAfee Active Mail Protection
F-Secure Personal Express 4.7
F-Secure Personal Express 4.6
F-Secure Personal Express 4.5
F-Secure Internet Security 2004
F-Secure Internet Security 2003
F-Secure Internet Gatekeeper 6.32
F-Secure Internet Gatekeeper 6.31
F-Secure F-Secure for Firewalls 6.20
F-Secure Anti-Virus for Workstations 5.42
F-Secure Anti-Virus for Workstations 5.41
F-Secure Anti-Virus for Windows Servers 5.42
F-Secure Anti-Virus for Windows Servers 5.41
F-Secure Anti-Virus for Samba Servers 4.60
F-Secure Anti-Virus for MS Exchange 6.21
F-Secure Anti-Virus for MIMEsweeper 5.42
F-Secure Anti-Virus for MIMEsweeper 5.41
F-Secure Anti-Virus for Linux Workstations 4.52
F-Secure Anti-Virus for Linux Workstations 4.51
F-Secure Anti-Virus for Linux Servers 4.52
F-Secure Anti-Virus for Linux Servers 4.51
F-Secure Anti-Virus for Linux Gateways 4.52
F-Secure Anti-Virus for Linux Gateways 4.51
F-Secure Anti-Virus Client Security 5.52
F-Secure Anti-Virus Client Security 5.50
F-Secure Anti-Virus 2004
F-Secure Anti-Virus 2003
Clearswift MailSweeper 4.3.13
Clearswift MailSweeper 4.3.11
Clearswift MailSweeper 4.3.10
Clearswift MailSweeper 4.3.8
Clearswift MailSweeper 4.3.7
Clearswift MailSweeper 4.3.6 SP1
Clearswift MailSweeper 4.3.6
Clearswift MailSweeper 4.3.5
Clearswift MailSweeper 4.3.4
Clearswift MailSweeper 4.3.3
Clearswift MailSweeper 4.3
Clearswift MailSweeper 4.2
Clearswift MailSweeper 4.1
Clearswift MailSweeper 4.0
Barracuda Barracuda Spam Firewall 3.1.18 firmware
Barracuda Barracuda Spam Firewall 3.1.17 firmware
Not Vulnerable: Barracuda Barracuda Spam Firewall firmware


Privacy Statement
Copyright 2010, SecurityFocus