CVE-2004-0234

Publication date 18 August 2004

Last updated 24 July 2024

Ubuntu priority

Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA archive, which triggers the overflow when testing or extracting the archive.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
lha	7.04 feisty	Fixed 1.14i-10
	6.10 edgy	Fixed 1.14i-10
	6.06 LTS dapper	Fixed 1.14i-10

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2004-0234