Slashdot Mirror

← Back to Stories (view on slashdot.org)

StuffIt 6.5.x and Earlier Allows Buffer Overflow

Posted by pudge on Wednesday October 2, 2002 @02:19PM from the security-good-overflow-bad dept.

A user writes in that Aladdin Systems has announced that StuffIt, versions 6.5.x and earlier for Mac OS and Mac OS X, "may contain a flaw that would cause expanding certain maliciously crafted .zip archives to execute unwanted instructions or code." Aladdin notes that no such "trojan horses" have been reported. StuffIt Expander 7.0 is, as with previous versions, free to download and use.

2 of 62 comments (clear)

Min score:

Reason:

Sort:

timing by stego · 2002-10-02 15:35 · Score: 1, Flamebait

...and I was just recently wondering why I might upgrade, thinking that I would wait until someone sent something that I couldn't open.
If you were my son, by bigfox · 2002-10-02 17:59 · Score: 0, Flamebait

I would cut my balls off to prevent that from happening again.

Than I would ship you off to school in Israel because it might put an end to the fighting and get rid of you all at once.

They would unite in your death than forget about hating eachother.

--
Big FOX =^,^= What do you mean it's broken? I fixed it yesterday!