CVE-2001-1228

UNRATED

Description

Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server.

Affected products

gnu / gzip1.2.4 – 1.2.4
gnu / gzip1.2.4a – 1.2.4a
gnu / gzip1.3 – 1.3

References

MISChttp://online.securityfocus.com/archive/1/247717
VENDOR_ADVISORYftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-002.txt.asc
MISChttp://www.iss.net/security_center/static/7882.php
MISChttp://www.securityfocus.com/bid/3712