| |||||||||||||
| Test ID: | 1.3.6.1.4.1.25623.1.0.900525 |
| Category: | Buffer overflow |
| Title: | eZip Buffer Overflow Vulnerability |
| Summary: | Check for the version of eZip |
| Description: | Overview: The host is installed with eZip Wizard and is prone to buffer overflow vulnerability. Vulnerability Insight: A boundary check error while processing specially crafted .zip compressed files leads to a stack based buffer overflow. Impact: Successful exploit will allow the attacker to execute arbitrary code on the system to cause the application to crash. Impact Level: Application Affected Software/OS: eZip version 3.0 and prior on Windows. Fix: No solution or patch is available as of 23rd March, 2009. Information regarding this issue will be updated once the solution details are available. For updates refer to http://www.edisys.com/ References: http://www.milw0rm.com/exploits/8180 http://xforce.iss.net/xforce/xfdb/49148 |
| Cross-Ref: |
BugTraq ID: 34044 Common Vulnerability Exposure (CVE) ID: CVE-2009-1028 http://www.milw0rm.com/exploits/8180 http://www.securityfocus.com/bid/34044 http://secunia.com/advisories/39169 http://securityreason.com/securityalert/8217 XForce ISS Database: ezipwizard-zip-bo(49148) http://xforce.iss.net/xforce/xfdb/49148 |
| Copyright | Copyright (C) 2009 SecPod |
| This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |
|
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois
© 1998-2013 E-Soft Inc. All rights reserved.