VYPR

Tugzip

by Tugzip

CVEs (3)

  • CVE-2008-4779Oct 29, 2008
    risk 0.08cvss epss 0.65

    Stack-based buffer overflow in TUGzip 3.5.0.0 allows remote attackers to denial of service (crash) or execute arbitrary code via a long filename in a .zip file.

  • CVE-2006-1715Apr 11, 2006
    risk 0.00cvss epss 0.01

    Multiple directory traversal vulnerabilities in Christian Kindahl TUGZip 3.4.0.0, 3.3.0.0, and 3.1.0.2 allow user-assisted attackers to create files in arbitrary directories via a .. (dot dot) in an archive pack with a crafted (1) .gz, (2) .jar, (3) .rar, or (4) .zip file.

  • CVE-2005-4594Dec 31, 2005
    risk 0.00cvss epss 0.05

    Stack-based buffer overflow in TUGZip 3.4.0.0 allows remote attackers to execute arbitrary code via a long filename in an ARJ archive.