Buffer overflow in unalz before 0.53 allows remote attackers to execute arbitrary code via long file names in ALZ archives.
https://exchange.xforce.ibmcloud.com/vulnerabilities/23267
http://www.vupen.com/english/advisories/2005/2604
http://www.kipple.pe.kr/win/unalz/
http://www.debian.org/security/2006/dsa-959
http://secunia.com/advisories/18665