Lucene search
SAINT CorporationSAINT:6C01AA42FC8CFE7B63DB5735ED08E61DHistoryNov 27, 2006 - 12:00 a.m.
WinZip FileView ActiveX control unsafe method
2006-11-2700:00:00
SAINT Corporation
www.saintcorporation.com
12
0.963 High
EPSS
Percentile
99.5%
Added: 11/27/2006
CVE: CVE-2006-5198
BID: 21060
OSVDB: 30433
Background
WinZip includes the FileView ActiveX control which provides a user interface similar to the file view pane in Windows Explorer.
Problem
The FileView ActiveX control is marked “safe for scripting” and exposes several unsafe methods which can be used to execute arbitrary commands.
Resolution
Upgrade to WinZip 10.0 Build 7245 or higher or WinZip 11.0 or higher.
References
<http://archives.neohapsis.com/archives/fulldisclosure/2006-11/0247.html>
Limitations
Exploit works on WinZip 10.0 Build 6667 and requires a user to load the exploit page in Internet Explorer.
Platforms
Windows 2000
Windows XP SP0 / Windows XP SP1
Windows XP SP2 / Windows XP
Related
packetstorm
packetstorm
WinZip FileView (WZFILEVIEW.FileViewCtrl.61) ActiveX Buffer Overflow
2009-11-26 00:00:00
zdi
zdi
WinZip FileView ActiveX Control Unsafe Method Exposure Vulnerability
2006-11-14 00:00:00
cve
cve
saint
saint
WinZip FileView ActiveX control unsafe method
2006-11-27 00:00:00
WinZip FileView ActiveX control unsafe method
2006-11-27 00:00:00
WinZip FileView ActiveX control unsafe method
2006-11-27 00:00:00
cvelist
cvelist
securityvulns
securityvulns
nvd
nvd
cert
cert
checkpoint_advisories
checkpoint_advisories
nessus
nessus
WinZip FileView ActiveX Control Vulnerabilities
2006-11-15 00:00:00