[] NeoSense
E X P L O I T S
title author type platform port cve id

WinZip 9.0 - Command Line Remote Buffer Overflow

Author: Umesh Wanve
type: dos
platform: windows
port: 
date_added: 2007-01-12 
date_updated: 2013-11-06 
verified: 1 
codes: CVE-2007-0264;OSVDB-39800 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/22020/info

WinZip is prone to a remote buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it into an insufficiently sized buffer.

An attacker may exploit this issue to cause denial-of-service conditions and possibly to execute arbitrary code within the context of the affected application, but this has not been confirmed.

This issue affects versions prior to 9.0 SR1.

Winzip32.exe "A" x 5002
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.