Vulnerabilities > Winace
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-03-09 | CVE-2015-2063 | Numeric Errors vulnerability in Winace Unace 1.2B Integer overflow in unace 1.2b allows remote attackers to cause a denial of service (crash) via a small file header in an ace archive, which triggers a buffer overflow. | 4.3 |
| 2007-12-28 | CVE-2007-6563 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Winace Heap-based buffer overflow in WinAce 2.65 and earlier, and possibly other versions before 2.69, allows user-assisted remote attackers to execute arbitrary code via a long filename in a compressed UUE archive. | 10.0 |
| 2007-05-09 | CVE-2007-2535 | Remote Denial of Service vulnerability in Winace 2.5/2.6.0.5/2.60 WinAce allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file. | 7.8 |
| 2007-05-09 | CVE-2007-1673 | Resource Management Errors vulnerability in multiple products unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file. network low complexity amavis avast avira panda picozip rahul-dhesi unzoo winace barracuda-networks CWE-399 | 7.8 |
| 2006-02-24 | CVE-2006-0813 | Buffer Errors vulnerability in Winace 2.60 Heap-based buffer overflow in WinACE 2.60 allows user-assisted attackers to execute arbitrary code via a large header block in an ARJ archive. | 5.1 |
| 2005-09-08 | CVE-2005-2856 | Buffer Errors vulnerability in Winace 2.6.0.0 Stack-based buffer overflow in the WinACE UNACEV2.DLL third-party compression utility before 2.6.0.0, as used in multiple products including (1) ALZip 5.51 through 6.11, (2) Servant Salamander 2.0 and 2.5 Beta 1, (3) WinHKI 1.66 and 1.67, (4) ExtractNow 3.x, (5) Total Commander 6.53, (6) Anti-Trojan 5.5.421, (7) PowerArchiver before 9.61, (8) UltimateZip 2.7,1, 3.0.3, and 3.1b, (9) Where Is It (WhereIsIt) 3.73.501, (10) FilZip 3.04, (11) IZArc 3.5 beta3, (12) Eazel 1.0, (13) Rising Antivirus 18.27.21 and earlier, (14) AutoMate 6.1.0.0, (15) BitZipper 4.1 SR-1, (16) ZipTV, and other products, allows user-assisted attackers to execute arbitrary code via a long filename in an ACE archive. | 7.5 |
| 2005-08-26 | CVE-2005-2694 | Remote Security vulnerability in Winace 2.6.0.5 Buffer overflow in WinAce 2.6.0.5, and possibly earlier versions, allows remote attackers to execute arbitrary code via a temporary (.tmp) file that contains an entry with a long file name. | 7.5 |