Info-ZIP UnZip File Name Buffer Overflow Vulnerability

The following example command will demonstrate this issue:

unzip `perl -e 'print "A" x 50000'`

An exploit by DVDMAN is available:


 

Privacy Statement
Copyright 2010, SecurityFocus