|
|
Family: Windows --> Category: infos
PowerArchiver paiso.dll Buffer Overflow Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks file versions of paiso.dll
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote Windows host contains a library that is affected by a
buffer overflow vulnerability.
Description :
The remote host contains PowerArchiver, a file compression utility for
Windows.
The version of PowerArchiver installed on the remote host has a buffer
overflow in the 'paiso.dll' library file that can be triggered when
processing the full pathname of a file within an ISO image. If an
attacker can trick a user on the affected host into opening a
specially-crafted ISO image file, he can leverage this issue to
execute arbitrary code on the host subject to the user's rights.
See also :
http://vuln.sg/powarc964-en.html
http://archives.neohapsis.com/archives/bugtraq/2007-01/0101.html
Solution :
Upgrade to PowerArchiver 9.64.03 or later.
Threat Level:
High / CVSS Base Score : 8
(AV:R/AC:H/Au:NR/C:C/I:C/A:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
