Intrusion Prevention

PeaZIP.Archived.FileName.Command.Injection

Description

This indicates an attack attempt against a command injection vulnerability in PeaZIP.
The vulnerability is caused by an error when the vulnerable software handles a malicious archive file. It allows a remote attacker to inject arbitrary command via sending a crafted archive files.

Affected Products

PeaZIP 2.6.1, 2.5.1, and earlier on Windows

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version

CVE References

CVE-2009-2261