WinZip.MIME.Archive.Buffer.Overflow

description-logoDescription

It indicates a possible exploit of "MIME archive buffer overflow" vulnerability in WinZip software.


WINZIP is a windows application and widely used for archive files. A buffer overflow vulnerability is reported in it that may allow an attacker to execute arbitrary code on the affected system. This is due to applications UUDeview package failure to validate certain parameters in MIME archive file with extensions .mim, .uue, .uu, .b64,
.bhx, .hqx, and .xxe while parsing them. This may be exploited by an attacker by specially crafting archive file with above extensions and send it to a victim via email.

affected-products-logoAffected Products

WinZip 8.1 SR-1 and possibly earlier versions

Impact logoImpact

The attacker may be able to execute arbitrary code.

recomended-action-logoRecommended Actions

Update to WINZIP version 9.0 or later.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

1