CVE-2019-12807
N/A
N/A
Summary
Alzip 10.83 and earlier version contains a stack-based buffer overflow vulnerability, caused by improper bounds checking during the parsing of crafted ISO archive file format. By persuading a victim to open a specially-crafted ISO archive file, an attacker could execution arbitrary code.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| ESTSOFT | ALZIP | 10.83 | affected |
Weaknesses
- CWE-119: CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
ADP Enrichment
CVE Program Container
Additional References
- https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35114
- https://www.altools.co.kr/Download/ALZip.aspx#n
References
- https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35114
- https://www.altools.co.kr/Download/ALZip.aspx#n
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.