Lucene search

[email protected]NVD:CVE-2006-3985

HistoryAug 05, 2006 - 12:04 a.m.

CVE-2006-3985

2006-08-0500:04:00

CWE-119

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.2%

JSON

Stack-based buffer overflow in DZIPS32.DLL 6.0.0.4 in ConeXware PowerArchiver 9.62.03 allows user-assisted attackers to execute arbitrary code by adding a new file to a crafted ZIP archive that already contains a file with a long name.

Affected configurations

NVD

Node

conexwarepowerarchiverRange≤9.62.03

conexwarepowerarchiverMatch8.10

conexwarepowerarchiverMatch8.60

conexwarepowerarchiverMatch9.5_beta_4

conexwarepowerarchiverMatch9.5_beta_5

conexwarepowerarchiverMatch9.25

References

secunia.com/advisories/21199

securityreason.com/securityalert/1334

securitytracker.com/id?1016579

vuln.sg/powarc962-en.html

www.osvdb.org/27492

www.powerarchiver.com/blog/

www.securityfocus.com/archive/1/441205/100/100/threaded

www.securityfocus.com/bid/19143

www.vupen.com/english/advisories/2006/2971

exchange.xforce.ibmcloud.com/vulnerabilities/27939

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.2%

JSON

Related for NVD:CVE-2006-3985

cvelist2 cve2 prion1 nvd1 nessus1