Vulnerabilities > Winace

DATE CVE VULNERABILITY TITLE RISK
2015-03-09 CVE-2015-2063 Numeric Errors vulnerability in Winace Unace 1.2B
Integer overflow in unace 1.2b allows remote attackers to cause a denial of service (crash) via a small file header in an ace archive, which triggers a buffer overflow.
network
winace CWE-189
4.3
2007-12-28 CVE-2007-6563 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Winace
Heap-based buffer overflow in WinAce 2.65 and earlier, and possibly other versions before 2.69, allows user-assisted remote attackers to execute arbitrary code via a long filename in a compressed UUE archive.
network
low complexity
winace CWE-119
critical
10.0
2007-05-09 CVE-2007-2535 Remote Denial of Service vulnerability in Winace 2.5/2.6.0.5/2.60
WinAce allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
network
low complexity
winace
7.8
2007-05-09 CVE-2007-1673 Resource Management Errors vulnerability in multiple products
unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
7.8
2006-02-24 CVE-2006-0813 Buffer Errors vulnerability in Winace 2.60
Heap-based buffer overflow in WinACE 2.60 allows user-assisted attackers to execute arbitrary code via a large header block in an ARJ archive.
network
high complexity
winace CWE-119
5.1
2005-09-08 CVE-2005-2856 Buffer Errors vulnerability in Winace 2.6.0.0
Stack-based buffer overflow in the WinACE UNACEV2.DLL third-party compression utility before 2.6.0.0, as used in multiple products including (1) ALZip 5.51 through 6.11, (2) Servant Salamander 2.0 and 2.5 Beta 1, (3) WinHKI 1.66 and 1.67, (4) ExtractNow 3.x, (5) Total Commander 6.53, (6) Anti-Trojan 5.5.421, (7) PowerArchiver before 9.61, (8) UltimateZip 2.7,1, 3.0.3, and 3.1b, (9) Where Is It (WhereIsIt) 3.73.501, (10) FilZip 3.04, (11) IZArc 3.5 beta3, (12) Eazel 1.0, (13) Rising Antivirus 18.27.21 and earlier, (14) AutoMate 6.1.0.0, (15) BitZipper 4.1 SR-1, (16) ZipTV, and other products, allows user-assisted attackers to execute arbitrary code via a long filename in an ACE archive.
network
low complexity
winace CWE-119
7.5
2005-08-26 CVE-2005-2694 Remote Security vulnerability in Winace 2.6.0.5
Buffer overflow in WinAce 2.6.0.5, and possibly earlier versions, allows remote attackers to execute arbitrary code via a temporary (.tmp) file that contains an entry with a long file name.
network
low complexity
winace
7.5