CVE-2013-5656

HIGH

FuzeZip 1.0.0.131625 - Local Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-5656. PoCs published by RealPentesting.

AI-analyzed exploit summary This exploit targets a SEH buffer overflow vulnerability in FuzeZip v1.0.0.131625 by crafting a malicious ZIP file with a payload that triggers the overflow, leading to arbitrary code execution.

Description

FuzeZip 1.0.0.131625 has a Local Buffer Overflow vulnerability

Exploits (1)

exploitdb WORKING POC VERIFIED

by RealPentesting · pythonlocalwindows

https://www.exploit-db.com/exploits/25130

View Code ZIP pw:eip

This exploit targets a SEH buffer overflow vulnerability in FuzeZip v1.0.0.131625 by crafting a malicious ZIP file with a payload that triggers the overflow, leading to arbitrary code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: FuzeZip v1.0.0.131625

No auth needed

Prerequisites: Victim must open the malicious ZIP file with FuzeZip

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Third Party Advisory x_refsource_misc

http://realpentesting.blogspot.com.es/p/advisories.html

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://www.exploit-db.com/exploits/25130

Exploit, Mailing List, Third Party Advisory x_refsource_misc

http://seclists.org/fulldisclosure/2013/Sep/8

Scores

CVSS v3 7.8

EPSS 0.0152

EPSS Percentile 71.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (1)

fuzezip_project/fuzezip 1.0.0.131625

Published Jan 07, 2020

Tracked Since Feb 18, 2026