IBM Information for VU#383779

ZIP archives containing files with large filenames can cause buffer overflows


Not Affected

Vendor Statement

The AIX operating system is not vulnerable to the ZIP archive exploits mentioned above through the compression/decompression utilities that ship with the base operating system.

As always, it's a good idea to list the contents of any archive file before unpacking and understand what changes may result from that action.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.