Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:0C31E2791B1AE04B1DC851DF46A31746
HistoryNov 27, 2006 - 12:00 a.m.

WinZip FileView ActiveX control unsafe method

2006-11-2700:00:00
SAINT Corporation
my.saintcorporation.com
14

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

0.963 High

EPSS

Percentile

99.5%

JSON

Added: 11/27/2006
CVE: CVE-2006-5198
BID: 21060
OSVDB: 30433

Background

WinZip includes the FileView ActiveX control which provides a user interface similar to the file view pane in Windows Explorer.

Problem

The FileView ActiveX control is marked “safe for scripting” and exposes several unsafe methods which can be used to execute arbitrary commands.

Resolution

Upgrade to WinZip 10.0 Build 7245 or higher or WinZip 11.0 or higher.

References

<http://archives.neohapsis.com/archives/fulldisclosure/2006-11/0247.html&gt;

Limitations

Exploit works on WinZip 10.0 Build 6667 and requires a user to load the exploit page in Internet Explorer.

Platforms

Windows 2000
Windows XP SP0 / Windows XP SP1
Windows XP SP2 / Windows XP

Related

cve 3
saint 3
cvelist 3
packetstorm 1
zdi 1
securityvulns 1
nvd 3
cert 2
checkpoint_advisories 1
nessus 1
cve
cve
CVE-2006-5198
2006-11-14 21:07:00
CVE-2006-3890
2006-11-21 22:07:00
CVE-2006-6884
2007-01-05 11:00:00
saint
saint
WinZip FileView ActiveX control unsafe method
2006-11-27 00:00:00
WinZip FileView ActiveX control unsafe method
2006-11-27 00:00:00
WinZip FileView ActiveX control unsafe method
2006-11-27 00:00:00
cvelist
cvelist
CVE-2006-5198
2006-11-14 21:00:00
CVE-2006-6884
2007-01-05 11:00:00
CVE-2006-3890
2006-11-21 22:00:00
packetstorm
packetstorm
WinZip FileView (WZFILEVIEW.FileViewCtrl.61) ActiveX Buffer Overflow
2009-11-26 00:00:00
zdi
zdi
WinZip FileView ActiveX Control Unsafe Method Exposure Vulnerability
2006-11-14 00:00:00
securityvulns
securityvulns
ZDI-06-040: WinZip FileView ActiveX Control Unsafe Method Exposure Vulnerability
2006-11-15 00:00:00
nvd
nvd
CVE-2006-5198
2006-11-14 21:07:00
CVE-2006-6884
2006-12-31 05:00:00
CVE-2006-3890
2006-11-21 22:07:00
cert
cert
Sky Software FileView ActiveX control allows arbitrary command execution via unsafe methods
2006-11-16 00:00:00
Sky Software FileView ActiveX control buffer overflow vulnerability
2006-11-16 00:00:00
checkpoint_advisories
checkpoint_advisories
WinZip ActiveX Control Instantiation Buffer Overflow (CVE-2006-5198; CVE-2006-6884)
2007-07-02 00:00:00
nessus
nessus
WinZip FileView ActiveX Control Vulnerabilities
2006-11-15 00:00:00

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

0.963 High

EPSS

Percentile

99.5%

JSON
Related for SAINT:0C31E2791B1AE04B1DC851DF46A31746
cve3saint3cvelist3packetstorm1zdi1securityvulns1nvd3cert2checkpoint_advisories1nessus1