Login   |   Secure Purdue > News

Archive Format Vulnerabilities

Programs that handle archive formats ACE, ARJ, BZ2, CAB, GZ, LHA, RAR, TAR, ZIP and ZOO could potentially be affected by newly discovered vulnerabilities.  Various types of programs that could be affected include:  anti-virus, firewalls (software-based), encryption products (VPN, PGP), backup software, office programs, operating systems and libraries.

For more details and a complete list of vulnerable products, please see the following advisory:

https://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html

REFERENCES:

CERT-FI 

https://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html

Posted by Kitch Spicer on March 20, 2008, in Handlers Log.