CVE-2006-5198

Related Files

WinZip FileView (WZFILEVIEW.FileViewCtrl.61) ActiveX Buffer Overflow

Posted Nov 26, 2009

Authored by dean | Site metasploit.com

The FileView ActiveX control (WZFILEVIEW.FileViewCtrl.61) could allow a remote attacker to execute arbitrary code on the system. The control contains several unsafe methods and is marked safe for scripting and safe for initialization. A remote attacker could exploit this vulnerability to execute arbitrary code on the victim system. WinZip 10.0 <= Build 6667 are vulnerable.

tags | exploit, remote, arbitrary, activex

advisories | CVE-2006-5198

SHA-256 | 90943b6ba87cbf74d05e1b183bb591716875568403841933867bae56ece45c76

Download | Favorite | View

Zero Day Initiative Advisory 06-040

Posted Nov 16, 2006

Authored by Tipping Point | Site zerodayinitiative.com

A vulnerability allows remote attackers to execute arbitrary code on systems with vulnerable installations of WinZip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. Affected is WinZip 10.0 (pre build 7245).

tags | advisory, remote, arbitrary

advisories | CVE-2006-5198

SHA-256 | 06c0a0311eb69db540002126c6af3e38d1298b9ce5ad646d96ccc8903102a2a0

Download | Favorite | View