2.60

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

winace

NVD

Published: 2007-05-09

Updated: 2018-10-16

Summary

WinAce allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

Vulnerable Configurations

Part	Description	Count
Application	Winace Winace Winace 2.5 Winace Winace 2.6.0.5 Winace Winace 2.60	3

References

http://osvdb.org/41750
http://securityreason.com/securityalert/2680
http://www.securityfocus.com/archive/1/467646/100/0/threaded
http://www.securityfocus.com/bid/23823
https://exchange.xforce.ibmcloud.com/vulnerabilities/34080