Title: Knownsoft Turbo Searcher ARJ File Handling Buffer Overflow Vulnerability
Severity: HIGH
Description:
Turbo Searcher is a utility that can search for files on the local machine or machines accessible over a local area network.
Turbo Searcher is prone to a buffer-overflow vulnerability when handling malformed ARJ archives. The issue occurs in the 7-Zip ARJ plugin (arj.dll). Successful exploitation results in an overflow that can cause the application to crash or arbitrary code to run.
Note that this issue arises only when the 'Quick Search option is disabled and the 'Search in compressed file' option is enabled.
Turbo Searcher Standard Edition version 3.30 build 052705 and Turbo Searcher Network Edition version 3.30 build 052705 are known to be vulnerable; other versions may also be affected.
Affected Products:
- Knownsoft Turbo Searcher Network Edition 3.30 build 052705
- Knownsoft Turbo Searcher Standard Edition 3.30 build 052705
References:
- Knownsoft: Turbo Searcher Product Page
- Tan Chew Keong: Turbo Searcher 7-Zip ARJ Plugin Buffer Overflow Vulnerability
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
