CVSS: 9.3EPSS: 6%CPEs: 7EXPL: 1CVE-2008-4420
https://notcve.org/view.php?id=CVE-2008-4420
13 Apr 2009 — Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in DynaZip Max and DZIPS32.DLL before 6.0.0.5 in DynaZip Max Secure; as used in HP OpenView Performance Agent C.04.60, HP Performance Agent C.04.70 and C.04.72, TurboZIP 6.0, and other products; allow user-assisted attackers to execute arbitrary code via a long filename in a ZIP archive during a (1) Fix (aka Repair), (2) Add, (3) Update, or (4) Freshen action, a related issue to CVE-2006-3985. Múltiples desbordamientos de búfer basados en pi... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01622011 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 53%CPEs: 24EXPL: 0CVE-2004-1094
https://notcve.org/view.php?id=CVE-2004-1094
01 Dec 2004 — Buffer overflow in InnerMedia DynaZip DUNZIP32.dll file version 5.00.03 and earlier allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, as demonstrated using (1) a .rjs (skin) file in RealPlayer 10 through RealPlayer 10.5 (6.0.12.1053), RealOne Player 1 and 2, (2) the Restore Backup function in CheckMark Software Payroll 2004/2005 3.9.6 and earlier, (3) CheckMark MultiLedger before 7.0.2, (4) dtSearch 6.x and 7.x, (5) mcupdmgr.exe and mghtml.exe in McAfee... • http://archives.neohapsis.com/archives/fulldisclosure/2004-10/1044.html •