Summary
This host is installed with PeaZIP and is prone to Remote Code Execution vulnerability.
Impact
Successful exploitation will allow attacker to exectue arbitrary code on the affected system via files containing shell metacharacters and commands contained in a ZIP archive.
Solution
Update to PeaZIP version 2.6.2
http://sourceforge.net/projects/peazip/files/
Insight
The flaw is due to insufficient sanitation of input data while processing the names of archived files.
Affected
PeaZIP version 2.6.1 and prior on Windows.
References
Updated on 2017-03-28
Severity
Classification
-
CVE CVE-2009-2261 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities