5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
8.3 High
AI Score
Confidence
Low
0.018 Low
EPSS
Percentile
88.3%
Stack-based buffer overflow in (1) CxUux60.dll and (2) CxUux60u.dll, as used in SpeedProject products including (a) Squeez 5.0 Build 4285, and (b) SpeedCommander 11.0 Build 4430 and 10.51 Build 4430, allows user-assisted attackers to execute arbitrary code via a ZIP archive containing a long filename.
secunia.com/advisories/17420
secunia.com/secunia_research/2005-60/advisory
securityreason.com/securityalert/204
securitytracker.com/id?1015265
securitytracker.com/id?1015266
securitytracker.com/id?1015267
www.osvdb.org/21073
www.securityfocus.com/archive/1/417588/30/0/threaded
www.vupen.com/english/advisories/2005/2570