Intrusion Prevention

ZIP.File.Document.Filename.Buffer.Overflow

Description

This indicates an attack attempt to exploit a remote Code Execution vulnerability in TUGZip.
The vulnerability is caused by an error when handling a malformed zip file. It can be exploited via a crafted zip file, leading to remote code execution.

Affected Products

TUGZip 3.00

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are not aware of any patches supplied by the vendor for this issue.

CVE References

CVE-2011-4535 CVE-2008-4779