Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

1 vulnerability found for Lhaca by Lhaca

JVNDB-2007-000491

Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00
Severity ?
N/A (UNKNOWN) - -
Summary
Lhaca LHZ Archive Extended Header Size Processing Buffer Overflow Vulnerability
Details
Lhaca does not process an LHZ archive with an invalid Extended Header Size properly, which could lead to buffer overflow. This problem is reported to be different from the issue identified in JVNDB-2007-000492 (CVE-2007-3375).
References
Impacted products
Show details on JVN DB website
To clipboard 

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-000491.html",
  "dc:date": "2008-05-21T00:00+09:00",
  "dcterms:issued": "2008-05-21T00:00+09:00",
  "dcterms:modified": "2008-05-21T00:00+09:00",
  "description": "Lhaca does not process an LHZ archive with an invalid Extended Header Size properly, which could lead to buffer overflow.\r\nThis problem is reported to be different from the issue identified in JVNDB-2007-000492 (CVE-2007-3375).",
  "link": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-000491.html",
  "sec:cpe": {
    "#text": "cpe:/a:lhaca:file_archiver",
    "@product": "Lhaca",
    "@vendor": "Lhaca",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "9.3",
    "@severity": "High",
    "@type": "Base",
    "@vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2007-000491",
  "sec:references": [
    {
      "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3512",
      "@id": "CVE-2007-3512",
      "@source": "CVE"
    },
    {
      "#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3512",
      "@id": "CVE-2007-3512",
      "@source": "NVD"
    },
    {
      "#text": "http://secunia.com/advisories/25797",
      "@id": "SA25797",
      "@source": "SECUNIA"
    },
    {
      "#text": "http://www.frsirt.com/english/advisories/2007/2399",
      "@id": "FrSIRT/ADV-2007-2399",
      "@source": "FRSIRT"
    }
  ],
  "title": "Lhaca LHZ Archive Extended Header Size Processing Buffer Overflow Vulnerability"
}