WinZip WZFileView.FileViewCtrl.61 ActiveX Control Multiple Remote Code Execution Vulnerabilities

WinZip WZFileView.FileViewCtrl.61 ActiveX Control Multiple Remote Code Execution Vulnerabilities

Reports indicate this issue is being exploited in the wild.

UPDATE - CORE has developed a working commercial exploit for their IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

The following exploits are available:

/data/vulnerabilities/exploits/21060.html
/data/vulnerabilities/exploits/prdelka-vs-MS-winzip.c
/data/vulnerabilities/exploits/21060-2.html
/data/vulnerabilities/exploits/21060-3.html
/data/vulnerabilities/exploits/21060-4.html