Remote Code Execution in gzexe in gzip 1.3.3 and earlier

Remote Code Execution in gzexe in gzip 1.3.3 and earlier

CVE-2004-0603 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

gzexe in gzip 1.3.3 and earlier will execute an argument when the creation of a temp file fails instead of exiting the program, which could allow remote attackers or local users to execute arbitrary commands, a different vulnerability than CVE-1999-1332.

Learn more about our User Device Pen Test.