CVE-2006-2482
ZipTV for C++ Builder and Delphi 7 - Heap-based Buffer Overflow via ARJ Archive with Long Header
Title source: llmDescription
Heap-based buffer overflow in the TZipTV component in (1) ZipTV for Delphi 7 2006.1.26 and for C++ Builder 2006-1.16, (2) PentaZip 8.5.1.190 and PentaSuite-PRO 8.5.1.221, and possibly other products, allows user-assisted attackers to execute arbitrary code via an ARJ archive with a long header. NOTE: the ACE archive vector is covered by CVE-2005-2856.
References (8)
Core 8
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/19884
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0235
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/3495
Vendor Advisory x_refsource_misc
http://secunia.com/secunia_research/2006-50/advisory/
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/21458
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/20270
Vendor Advisory x_refsource_misc
http://secunia.com/secunia_research/2006-72/advisory/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/28785
Scores
EPSS
0.0283
EPSS Percentile
85.0%
Details
CWE
CWE-119
Status
published
Products (4)
microchip_data_systems/ziptv_for_c\+\+_builder
2006.1.16
microchip_data_systems/ziptv_for_delphi_7
2006.1.26
pentaware/pentasuite-pro
8.5.1.221
pentaware/pentazip
8.5.1.190
Published
Sep 08, 2006
Tracked Since
Feb 18, 2026