SkipNavigation
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric



 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#116182

WinZip vulnerable to buffer overflow in handling of MIME archive parameters

Overview

A buffer overflow vulnerability in the WinZip program could allow a remote attacker to execute arbitrary code on a vulnerable system.

I. Description

WinZip Computing, Inc.'s WinZip is a popular utility for creating and extracting a variety of archive file formats on Microsoft Windows-based systems. A buffer overflow error exists in the way that WinZip handles certain parameters of MIME archives.

This error results in a vulnerability when WinZip attempts to interpret invalid data in a MIME-encoded file.

An attacker could exploit this vulnerability by introducing a specially-crafted file to be opened by WinZip, and then coaxing or tricking a user or application into opening it. The malicious file could be introduced in a number of ways including, but not limited to, a remote web page, an email attachment, peer-to-peer file sharing, or network filesystems.

II. Impact

An attacker could execute arbitrary code of their choice on a vulnerable system.

III. Solution

Upgrade to the latest version of the software


WinZip Computing, Inc. has released an updated version of the WinZip software that includes a fix for this vulnerability. Users are strongly encouraged to upgrade to this version of the software. More details can be found in the Systems Affected section of this document.

Systems Affected

VendorStatusDate NotifiedDate Updated
WinZipVulnerable27-Feb-2004

References


http://www.winzip.com
http://www.idefense.com/application/poi/display?id=76&type=vulnerabilitiies

Credit

Thanks to iDefense Security Advisory for reporting this vulnerability.

This document was written by Chad R Dougherty based on information provided by iDefense and WinZip

Other Information

Date Public:2004-02-27
Date First Published:2004-03-01
Date Last Updated:2004-03-01
CERT Advisory: 
CVE-ID(s): 
NVD-ID(s): 
US-CERT Technical Alerts: 
Metric:7.70
Document Revision:9

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2004 Carnegie Mellon University
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader