Buffer overflow in LHA 1.14 and previous versions allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors related to "command line processing," a different vulnerability than CVE-2004-0771. NOTE: this issue may be REJECTED if there are not any cases in which LHA is setuid or is otherwise used across security boundaries.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tsugio okamoto lha |