• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Knownsoft Turbo Searcher ARJ File Handling Buffer Overflow Vulnerability

Turbo Searcher is prone to a buffer-overflow vulnerability when handling malformed ARJ archives. Successful exploitation may allow an attacker to crash the application crash or execute arbitrary code.

Turbo Searcher Standard Edition version 3.30 build 052705 and Turbo Searcher Network Edition version 3.30 build 052705 are known to be vulnerable; other versions may also be affected.