CVE-2007-4725

Currently unrated

Key Information:

Vendor: 7-zip
Status: 7-zip
Vendor: CVE Published:; 5 September 2007

Summary

Stack consumption vulnerability in AkkyWareHOUSE 7-zip32.dll before 4.42.00.04, as derived from Igor Pavlov 7-Zip before 4.53 beta, allows user-assisted remote attackers to execute arbitrary code via a long filename in an archive, leading to a heap-based buffer overflow.

References

http://secunia.com/advisories/26624

third-party-advisoryx_refsource_SECUNIA

http://jvn.jp/jp/JVN%2362868899/index.html

third-party-advisoryx_refsource_JVN

http://www.securityfocus.com/bid/25545

vdb-entryx_refsource_BID

EPSS Score

16% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 5, 2007
Vulnerability Reserved
Sep 5, 2007