[Full-disclosure] [vuln.sg] Lhaplus LHA Extended Header Handling Buffer Overflow Vulnerability

[TAN Chew Keong]

[vuln.sg] Vulnerability Research Advisory

Lhaplus LHA Extended Header Handling Buffer Overflow Vulnerability

by Tan Chew Keong
Release Date: 2006-07-31

Summary
-------
A vulnerability has been found in Lhaplus. When exploited, the 
vulnerability allows execution of arbitrary code when the user extracts 
a malicious LZH archive.

Tested Version
--------------
Lhaplus version 1.52 (Japanese)

Details
-------
http://vuln.sg/lhaplus152-en.html