|
|
Multiple Vendor ZIP Files Long Filename Buffer Overflow Vulnerability
|
Bugtraq ID:
|
5873
|
|
Class:
|
Boundary Condition Error
|
|
CVE:
|
CVE-2002-0370
|
|
Remote:
|
No
|
|
Local:
|
Yes
|
|
Published:
|
Oct 03 2002 12:00AM
|
|
Updated:
|
Jul 11 2009 05:06PM
|
|
Credit:
|
Discovery of this vulnerability is credited to Joe Testa of Rapid7, Inc.
|
|
Vulnerable:
|
WinZip WinZip 7.0
Verity Inc. KeyView Viewing SDK
Microsoft Windows XP Professional SP1
Microsoft Windows XP Professional
Microsoft Windows XP Home SP1
Microsoft Windows XP Home
Microsoft Windows ME
Microsoft Windows 98 With Plus! Pack
Lotus Notes Client 5.0.11
Lotus Notes Client 5.0.10
Lotus Notes Client 5.0.9 a
Lotus Notes Client 5.0.5
Lotus Notes Client 5.0.4
Lotus Notes Client 5.0.3
Lotus Notes Client 5.0.2
Lotus Notes Client 5.0.1
Lotus Notes Client 5.0
Lotus Notes Client 4.5
-
Apple Mac OS 7 7.6
-
Apple Mac OS 8 8.5
-
Microsoft Windows 95
-
Microsoft Windows 98
-
Microsoft Windows NT 4.0
Lotus Notes Client R6
Lotus Notes Client R5
Aladdin Systems Inc. Stuffit Expander 7.5
Aladdin Systems Inc. Stuffit Expander 7.0
Aladdin Systems Inc. Stuffit Expander 6.5.2
|
|
|
|
Not Vulnerable:
|
zlib zlib 1.1.4
+
Caldera OpenLinux Server 3.1.1
+
Caldera OpenLinux Server 3.1
+
Caldera OpenLinux Workstation 3.1.1
+
Caldera OpenLinux Workstation 3.1
+
GLT GLT 0.6
+
NetBSD NetBSD 1.6
+
NetBSD NetBSD 1.5.3
+
NetBSD NetBSD 1.5.2
+
NetBSD NetBSD 1.5.1
+
NetBSD NetBSD 1.5
-
NullSoft Winamp 2.79
+
OpenPKG OpenPKG 1.2
+
OpenPKG OpenPKG 1.1
+
RedHat Enterprise Linux AS 2.1 IA64
+
RedHat Enterprise Linux AS 2.1
+
RedHat Enterprise Linux ES 2.1 IA64
+
RedHat Enterprise Linux ES 2.1
+
RedHat Enterprise Linux WS 2.1 IA64
+
RedHat Enterprise Linux WS 2.1
+
RedHat Linux Advanced Work Station 2.1
+
Sun Cobalt Qube 3
+
Sun Cobalt Qube3 4000WG
+
Sun Cobalt Qube3 Japanese 4000WGJ
+
Sun Cobalt Qube3 Japanese w/ Caching and RAID 4100WGJ
+
Sun Cobalt Qube3 Japanese w/Caching 4010WGJ
+
Sun Cobalt Qube3 w/ Caching and RAID 4100WG
+
Sun Cobalt Qube3 w/Caching 4010WG
+
Sun Cobalt RaQ 4
+
Sun Cobalt RaQ XTR
+
Sun Cobalt RaQ XTR 3500R
+
Sun Cobalt RaQ XTR Japanese 3500R-ja
+
Sun Cobalt RaQ4 3001R
+
Sun Cobalt RaQ4 Japanese RAID 3100R-ja
+
Sun Cobalt RaQ4 RAID 3100R
+
Sun Linux 5.0
zlib zlib 1.1.3
+
Caldera OpenLinux Server 3.1.1
+
Caldera OpenLinux Workstation 3.1.1
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
Conectiva Linux 5.1
+
Conectiva Linux 5.0
+
Conectiva Linux graficas
+
Conectiva Linux ecommerce
+
EnGarde Secure Linux 1.0.1
-
FreeBSD FreeBSD 4.5
-
FreeBSD FreeBSD 4.4
-
FreeBSD FreeBSD 4.3
-
FreeBSD FreeBSD 4.2
-
FreeBSD FreeBSD 4.1
-
FreeBSD FreeBSD 4.0
-
FreeS/WAN FreeS/WAN 1.9.6
-
FreeS/WAN FreeS/WAN 1.9.5
-
FreeS/WAN FreeS/WAN 1.9.4
-
FreeS/WAN FreeS/WAN 1.9.3
-
FreeS/WAN FreeS/WAN 1.9.2
-
FreeS/WAN FreeS/WAN 1.9.1
-
FreeS/WAN FreeS/WAN 1.9
+
GLT GLT 0.5
+
IBM AIX 5.1
+
MandrakeSoft Corporate Server 1.0.1
+
MandrakeSoft Linux Mandrake 8.1 ia64
+
MandrakeSoft Linux Mandrake 8.1
+
MandrakeSoft Linux Mandrake 8.0 ppc
+
MandrakeSoft Linux Mandrake 8.0
+
MandrakeSoft Linux Mandrake 7.2
+
MandrakeSoft Linux Mandrake 7.1
+
MandrakeSoft Single Network Firewall 7.2
-
NullSoft Winamp 2.78
-
NullSoft Winamp 2.77
-
NullSoft Winamp 2.76
-
NullSoft Winamp 2.75
-
NullSoft Winamp 2.74
-
NullSoft Winamp 2.73
-
NullSoft Winamp 2.72
-
NullSoft Winamp 2.71
-
NullSoft Winamp 2.70
+
OpenPKG OpenPKG 1.0
+
Openwall Openwall GNU/*/Linux 0.1 -stable
+
RedHat Linux 7.2
+
RedHat Linux 7.1
+
RedHat Linux 7.0
+
RedHat Linux 6.2
+
S.u.S.E. Linux 7.3 sparc
+
S.u.S.E. Linux 7.3 ppc
+
S.u.S.E. Linux 7.3 i386
+
S.u.S.E. Linux 7.3
+
S.u.S.E. Linux 7.2 i386
+
S.u.S.E. Linux 7.2
+
S.u.S.E. Linux 7.1 x86
+
S.u.S.E. Linux 7.1 sparc
+
S.u.S.E. Linux 7.1 ppc
+
S.u.S.E. Linux 7.1 alpha
+
S.u.S.E. Linux 7.1
+
S.u.S.E. Linux 7.0 sparc
+
S.u.S.E. Linux 7.0 ppc
+
S.u.S.E. Linux 7.0 i386
+
S.u.S.E. Linux 7.0 alpha
+
S.u.S.E. Linux 7.0
+
S.u.S.E. Linux 6.4 ppc
+
S.u.S.E. Linux 6.4 i386
+
S.u.S.E. Linux 6.4 alpha
+
S.u.S.E. Linux 6.4
+
Sun Solaris 8_x86
+
Sun Solaris 8
-
Sun Solaris 7.0
-
Sun Solaris 2.6
-
Sun Solaris 2.5
-
TightVNC TightVNC 1.2 .0
+
Trustix Secure Linux 1.5
+
Trustix Secure Linux 1.2
+
Trustix Secure Linux 1.1
-
VNCThing VNCThing 2.2
zlib zlib 1.1.2
zlib zlib 1.1.1
zlib zlib 1.1
WinZip WinZip 8.0
RARLAB WinRar 3.0 .0
Microsoft Windows XP Professional SP1
Microsoft Windows XP Home SP1
Aladdin Systems Inc. Stuffit Expander 7.5
Aladdin Systems Inc. Stuffit Expander 7.0
|
|
|
