Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
estsoft alzip vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-1336
Buffer overflow in ALZip 8.21 and previous versions allows remote malicious users to execute arbitrary code via a crafted mim file.
Estsoft Alzip 8.0
Estsoft Alzip
Estsoft Alzip 8.12
NA
CVE-2005-3194
Multiple buffer overflows in ALZip 6.12 (Korean), 6.1 (International), and 5.52 (English) allow remote malicious users to execute arbitrary code via a long filename in a compressed (1) ALZ, (2) ARJ, (3) ZIP, (4) UUE, or (5) XXE archive.
Estsoft Alzip 5.52 English
Estsoft Alzip 6.1 International
Estsoft Alzip 6.12 Korean
7.8
CVSSv3
CVE-2018-10027
ESTsoft ALZip prior to 10.76 allows local users to execute arbitrary code via creating a malicious .DLL file and installing it in a specific directory: %PROGRAMFILES%\ESTsoft\ALZip\Formats, %PROGRAMFILES%\ESTsoft\ALZip\Coders, %PROGRAMFILES(X86)%\ESTsoft\ALZip\Formats, or %PROGRA...
Estsoft Alzip
7.8
CVSSv3
CVE-2017-11323
Stack-based buffer overflow in ESTsoft ALZip 8.51 and previous versions allows remote malicious users to execute arbitrary code via a crafted MS-DOS device file, as demonstrated by use of "AUX" as the initial substring of a filename.
Estsoft Alzip
7.8
CVSSv3
CVE-2019-12807
Alzip 10.83 and previous versions version contains a stack-based buffer overflow vulnerability, caused by improper bounds checking during the parsing of crafted ISO archive file format. By persuading a victim to open a specially-crafted ISO archive file, an attacker could executi...
Estsoft Alzip
7.8
CVSSv3
CVE-2018-5196
Alzip 10.76.0.0 and previous versions is vulnerable to a stack overflow caused by improper bounds checking. By persuading a victim to open a specially-crafted LZH archive file, a attacker could execute arbitrary code execution.
Estsoft Alzip
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started