[Japanese]

JVNDB-2007-000491

Lhaca LHZ Archive Extended Header Size Processing Buffer Overflow Vulnerability

Overview

Lhaca does not process an LHZ archive with an invalid Extended Header Size properly, which could lead to buffer overflow.
This problem is reported to be different from the issue identified in JVNDB-2007-000492 (CVE-2007-3375).
CVSS Severity (What is CVSS?)

CVSS V2 Severity:
Base Metrics 9.3 (High) [NVD Score]
  • Access Vector: Network
  • Access Complexity: Medium
  • Authentication: None
  • Confidentiality Impact: Complete
  • Integrity Impact: Complete
  • Availability Impact: Complete
Affected Products


Lhaca
  • Lhaca 1.21

Impact

An attacker could execute arbitrary code.
Solution

Please refer to the 'Vendor Information' section for the vendor recommended workaround (fixed in Lhaca 1.23) .

As of 2007/7/9 it is not an official remediation but expected to be so after more extensive testing.
Vendor Information

Lhaca
CWE (What is CWE?)

CVE (What is CVE?)

  1. CVE-2007-3512
References

  1. National Vulnerability Database (NVD) : CVE-2007-3512
  2. Secunia Advisory : SA25797
  3. FrSIRT Advisories : FrSIRT/ADV-2007-2399
Revision History

  • [2008/05/21]
      Web page published

Date Public2007/07/01
Date First Published2008/05/21
Date Last Updated2008/05/21