Unrated severityNVD Advisory· Published Nov 21, 2006· Updated Jun 16, 2026
CVE-2006-3890
CVE-2006-3890
Description
Stack-based buffer overflow in the Sky Software FileView ActiveX control, as used in WinZip 10 before build 7245 and in certain other applications, allows remote attackers to execute arbitrary code via a long FilePattern attribute in a WZFILEVIEW object, a different vulnerability than CVE-2006-5198.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:sky_software:fileview_activex_control:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sky_software:fileview_activex_control:*:*:*:*:*:*:*:*
- (no CPE)
cpe:2.3:a:winzip:winzip:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:winzip:winzip:*:*:*:*:*:*:*:*range: <=10.0
- cpe:2.3:a:winzip:winzip:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:winzip:winzip:8.0:*:*:*:*:*:*:*
- cpe:2.3:a:winzip:winzip:8.1:*:*:*:*:*:*:*
- cpe:2.3:a:winzip:winzip:8.1:sr1:*:*:*:*:*:*
- cpe:2.3:a:winzip:winzip:9.0:*:*:*:*:*:*:*
- (no CPE)range: <10 build 7245
Patches
Vulnerability mechanics
References
7- www.kb.cert.org/vuls/id/225217nvdPatchUS Government Resource
- secunia.com/advisories/22891nvdExploitPatchVendor Advisory
- www.securityfocus.com/bid/21060nvdExploitPatch
- www.securityfocus.com/archive/1/451566/100/0/threadednvd
- www.securityfocus.com/bid/21108nvd
- docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-067nvd
- www.exploit-db.com/exploits/2785nvd
News mentions
0No linked articles in our index yet.