PowerArchiver "BlackHole" Archive Handling Buffer Overflow - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

PowerArchiver "BlackHole" Archive Handling Buffer Overflow

Secunia Advisory:	SA27000
Release Date:	2007-10-05
Last Update:	2007-10-09

Critical:	Moderately critical
Impact:	System access
Where:	From remote
Solution Status:	Vendor Patch

Software:	PowerArchiver 2000 5.x PowerArchiver 2001 6.x PowerArchiver 2001 7.x PowerArchiver 2002 8.x PowerArchiver 2003 8.x PowerArchiver 2004 9.x PowerArchiver 2006 9.x PowerArchiver 2007 10.x

CVE reference:	CVE-2007-5279 (Secunia mirror) CVE-2007-5284 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: A vulnerability has been reported in PowerArchiver, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error when handling "BlackHole" archives. This can be exploited to cause a heap-based buffer overflow via a specially crafted "BlackHole" archive containing an overly long filename. Successful exploitation may allow execution of arbitrary code. The vulnerability is reported in versions prior to 10.20.21. Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector. Solution: Update to version 10.20.21. http://www.powerarchiver.com/download/ Provided and/or discovered by: Fourteenforty Research Institute, Inc. Changelog: 2007-10-05: Updated the credits and the "Description" section with additional information. Added additional affected versions. 2007-10-09: Added CVE reference. Original Advisory: Fourteenforty Research Institute, Inc.: http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20071009 PowerArchiver: http://www.powerarchiver.com/news/ JVN: http://jvn.jp/jp/JVN%2361323184/index.html



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

4 Related Secunia Security Advisories

1. PowerArchiver PAISO.DLL ISO File Handling Buffer Overflow

2. PowerArchiver DZIPS32.DLL Buffer Overflow Vulnerability

3. PowerArchiver unacev2.dll Buffer Overflow Vulnerability

4. PowerArchiver ACE/ARJ Archive Handling Buffer Overflow

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Apple Safari Cross-Domain Cookie Injection Vulnerability

2.	YouTube Blog Multiple Vulnerabilities

3.	dnsmasq Denial of Service and DNS Cache Poisoning

4.	Moodle Script Insertion and Cross-Site Request Forgery

5.	Asterisk Two Denial of Service Vulnerabilities

6.	Ubuntu update for dnsmasq

7.	Claroline Multiple Cross-Site Scripting Vulnerabilities

8.	Geeklog Forum Plugin Search Cross-Site Scripting Vulnerability

9.	IPCop update for various packages

10.	SocialEngine SQL Injection and Code Execution