CVE-2008-4779
50Vexday Risk Score
Patch soon. It has a working public exploit.
ssvc Attendepss 65%
from disclosure to weapon519 days
Published on NVDOct 29
1st PoC+519d
metasploitOct 28
exploitation probability
65%top 1% of all CVEs
observed exploitation
nono source reports it
3 public exploit(s)
Stack-based buffer overflow in TUGzip 3.5.0.0 allows remote attackers to denial of service (crash) or execute arbitrary code via a long filename in a .zip file.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencewww.exploit-db.com/exploits/6831unverifiedexploitdbwww.exploit-db.com/exploits/12008unverifiedexploitdbwww.exploit-db.com/exploits/17967unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.