CVE-2007-5048 Information

Description

Heap-based buffer overflow in Lhaplus before 1.55 allows remote attackers to execute arbitrary code via a long filename in an ARJ archive.

Reference

http://jvn.jp/jp/JVN2370734805/index.html http://osvdb.org/40582 http://secunia.com/advisories/26907 http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20070921 http://www.securityfocus.com/bid/25754 http://www7a.biglobe.ne.jp/~schezo/arj_vul.html https://exchange.xforce.ibmcloud.com/vulnerabilities/36718