CVE-2007-4725

7-zip < 4.42 - Stack Consumption via Long Filename in Archive

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4725. PoCs published by miyy3t.

AI-analyzed exploit summary This exploit targets a heap-based buffer overflow in AkkyWareHOUSE 7-zip32.dll (versions prior to 4.42.00.04) by crafting a malicious .m3u file. It leverages a jmp esp instruction in mswsock.dll to execute shellcode, which in this case spawns calc.exe.

Description

Stack consumption vulnerability in AkkyWareHOUSE 7-zip32.dll before 4.42.00.04, as derived from Igor Pavlov 7-Zip before 4.53 beta, allows user-assisted remote attackers to execute arbitrary code via a long filename in an archive, leading to a heap-based buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED

by miyy3t · perlremotewindows

https://www.exploit-db.com/exploits/30565

View Code ZIP pw:eip

This exploit targets a heap-based buffer overflow in AkkyWareHOUSE 7-zip32.dll (versions prior to 4.42.00.04) by crafting a malicious .m3u file. It leverages a jmp esp instruction in mswsock.dll to execute shellcode, which in this case spawns calc.exe.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: AkkyWareHOUSE 7-zip32.dll < 4.42.00.04

No auth needed

Prerequisites: Victim must open the malicious .m3u file with Virtual DJ 5.0

MITRE ATT&CK