VYPR
Unrated severityNVD Advisory· Published Oct 27, 2005· Updated Jun 16, 2026

CVE-2005-3317

CVE-2005-3317

Description

Multiple stack-based buffer overflows in ZipGenius 5.5.1.468 and 6.0.2.1041, and other versions before 6.0.2.1050, allow remote attackers to execute arbitrary code via (1) a ZIP archive that contains a file with a long filename, which is not properly handled by (a) zipgenius.exe, (b) zg.exe, (c) zgtips.dll, and (d) contmenu.dll; (2) a long original name in a (a) UUE, (b) XXE, or (c) MIM file, which is not properly handled by zipgenius.exe; or (3) an ACE archive with a file with a long filename, which is not properly handled by unacev2.dll.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:zipgenius:zipgenius:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:zipgenius:zipgenius:*:*:*:*:*:*:*:*range: <=standard_6.0.2.1041
    • cpe:2.3:a:zipgenius:zipgenius:standard_5.5.1.468:*:*:*:*:*:*:*
    • cpe:2.3:a:zipgenius:zipgenius:suite_5.5.1.468:*:*:*:*:*:*:*
    • (no CPE)range: <=6.0.2.1050

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.