CVE-2013-5660 in WinArchiverinfo

Summary

by MITRE

Buffer overflow in Power Software WinArchiver 3.2 allows remote attackers to execute arbitrary code via a crafted .zip file.

Once again VulDB remains the best source for vulnerability data.

Analysis

by VulDB Data Team • 05/12/2026

The vulnerability identified as CVE-2013-5660 represents a critical buffer overflow flaw within Power Software WinArchiver version 3.2 that exposes systems to remote code execution attacks. This vulnerability specifically manifests when the software processes maliciously crafted .zip files, creating a pathway for attackers to inject and execute arbitrary code on vulnerable systems. The buffer overflow occurs during the decompression and file extraction process, where insufficient input validation allows malicious data to overwrite adjacent memory regions beyond the allocated buffer boundaries.

This technical flaw falls under the Common Weakness Enumeration category CWE-121, which classifies buffer overflow conditions that occur when a program writes data beyond the boundaries of a fixed-length buffer. The vulnerability is particularly dangerous because it operates in a remote attack scenario where an attacker can deliver the malicious payload through a standard .zip file without requiring local access to the target system. The flaw exists in the archive handling mechanism of WinArchiver, where the application fails to properly validate the length and structure of compressed file contents before attempting to extract them into memory buffers.

The operational impact of this vulnerability extends beyond simple code execution, as it provides attackers with potential full system compromise capabilities. When successfully exploited, the buffer overflow can lead to arbitrary code execution with the privileges of the user running WinArchiver, potentially allowing attackers to install malware, modify system files, or establish persistent backdoors. The remote nature of the attack means that victims can be compromised simply by opening or processing the malicious archive file, making this vulnerability particularly attractive to threat actors seeking widespread exploitation. This aligns with ATT&CK technique T1059.007 for command and scripting interpreter and T1068 for exploit for privilege escalation.

Mitigation strategies for CVE-2013-5660 should focus on immediate software updates and patches from Power Software, as well as network-level defenses to prevent the delivery of malicious .zip files. Organizations should implement strict file validation policies and consider sandboxing mechanisms for archive processing. The vulnerability demonstrates the importance of input validation and proper memory management in archive handling utilities, as highlighted in industry best practices for secure coding standards. Network administrators should also deploy intrusion detection systems to monitor for suspicious .zip file transfers and consider implementing application whitelisting policies that restrict execution of known vulnerable software versions. Additionally, regular security assessments and vulnerability scanning should be conducted to identify similar buffer overflow conditions in other archive processing utilities and software components.

Reservation

08/30/2013

Disclosure

04/25/2014

Moderation

accepted

Entry

VDB-69488

CPE

ready

Exploit

Download

EPSS

0.11200

KEV

no

Activities

very low

Sources

Want to know what is going to be exploited?

We predict KEV entries!