Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2010-1685

Published: 04/05/2010 Updated: 08/08/2023
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 935
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Stack-based buffer overflow in CursorArts ZipWrangler 1.20 allows user-assisted remote malicious users to execute arbitrary code via a ZIP file containing a file with a long filename.

Vulnerable Product Search on Vulmon Subscribe to Product

cursorarts zipwrangler 1.20

Exploits

Exploit DB: ZipWrangler 1.20 - '.zip' File (SEH)
#!/usr/bin/perl # Title: ZipWrangler 120 (zip) SEH 0day exploit # Author: TecR0c & Sud0 # Date: April 24th, 2010 # Corelan Reference: wwwcorelanbe:8800/advisoriesphp?id=CORELAN-10-031 # Download: wwwsoftpediacom/get/Compression-tools/ZipWranglershtml # Platform: ...

References

CWE-119http://www.corelan.be:8800/index.php/forum/security-advisories/corelan-10-031-zip-wrangler-1-20-buffer-overflow/http://secunia.com/advisories/39575http://osvdb.org/64079https://seclists.org/fulldisclosure/2010/Apr/331https://nvd.nist.govhttps://www.exploit-db.com/exploits/12368/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572CVE-2024-24919CVE-2024-0230CVE-2024-32714HTML injectionlocal file inclusionCVE-2024-31098CVE-2024-31244privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook