[vuln.sg] Vulnerability Research Advisory Lhaplus LHA Extended Header Handling Buffer Overflow Vulnerability by Tan Chew Keong Release Date: 2006-07-31 Summary ------- A vulnerability has been found in Lhaplus. When exploited, the vulnerability allows execution of arbitrary code when the user extracts a malicious LZH archive. Tested Version -------------- Lhaplus version 1.52 (Japanese) Details ------- http://vuln.sg/lhaplus152-en.html