Lucene search

K

CertccCVELIST:CVE-2006-3890

HistoryNov 21, 2006 - 10:00 p.m.

CVE-2006-3890

2006-11-2122:00:00

certcc

www.cve.org

1

7.7 High

AI Score

Confidence

Low

0.963 High

EPSS

Percentile

99.5%

Stack-based buffer overflow in the Sky Software FileView ActiveX control, as used in WinZip 10 before build 7245 and in certain other applications, allows remote attackers to execute arbitrary code via a long FilePattern attribute in a WZFILEVIEW object, a different vulnerability than CVE-2006-5198.

References

secunia.com/advisories/22891

www.kb.cert.org/vuls/id/225217

www.securityfocus.com/archive/1/451566/100/0/threaded

www.securityfocus.com/bid/21060

www.securityfocus.com/bid/21108

docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-067

www.exploit-db.com/exploits/2785

7.7 High

AI Score

Confidence

Low

0.963 High

EPSS

Percentile

99.5%

Related for CVELIST:CVE-2006-3890

cve3 cert2 nvd3 nessus1 packetstorm1 zdi1 saint4 cvelist2 securityvulns1 checkpoint_advisories1