Loss of Confidentiality,
Loss of Integrity,
Loss of Availability
A buffer overflow exists in Winzip. The zipandemail function fails to handle long files name resulting in a buf overfer flow. With a specially crafted filename, an attacker can cause arbitrary code to executed resulting in a loss of confidentiality integrity, and/or availability.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.