Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD1D3A2737-7EB7-11D9-ACF7-000854D03344
HistoryFeb 14, 2005 - 12:00 a.m.

unace -- multiple vulnerabilities

2005-02-1400:00:00
vuxml.freebsd.org
15

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

74.5%

JSON

Ulf Härnhammar reports:

There are buffer overflows when extracting, testing or
listing specially prepared ACE archives.
There are directory traversal bugs when extracting ACE
archives.
There are also buffer overflows when dealing with long
(>17000 characters) command line arguments.

Secunia reports:

The vulnerabilities have been confirmed in version 1.2b.
One of the buffer overflow vulnerabilities have also been
reported in version 2.04, 2.2 and 2.5. Other versions may
also be affected.
Successful exploitation may allow execution of arbitrary
code.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchunace< 1.2b_2UNKNOWN

Related

nessus 3
openvas 6
securityvulns 1
gentoo 1
ubuntucve 2
cve 2
debiancve 2
cert 1
nessus
nessus
FreeBSD : unace -- multiple vulnerabilities (1d3a2737-7eb7-11d9-acf7-000854d03344)
2005-07-13 00:00:00
SuSE9 Security Update : unace (YOU Patch Number 10239)
2012-04-23 00:00:00
GLSA-200502-32 : UnAce: Buffer overflow and directory traversal vulnerabilities
2005-03-01 00:00:00
openvas
openvas
FreeBSD Ports: unace
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200511-10 (rar)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200502-32 (unace)
2008-09-24 00:00:00
securityvulns
securityvulns
[Full-Disclosure] unace-1.2b multiple buffer overflows and directory traversal bugs
2005-02-24 00:00:00
gentoo
gentoo
UnAce: Buffer overflow and directory traversal vulnerabilities
2005-02-28 00:00:00
ubuntucve
ubuntucve
CVE-2005-0161
2005-02-22 00:00:00
CVE-2005-0160
2005-02-22 00:00:00
cve
cve
CVE-2005-0161
2005-02-22 05:00:00
CVE-2005-0160
2005-02-22 05:00:00
debiancve
debiancve
CVE-2005-0161
2005-02-22 05:00:00
CVE-2005-0160
2005-02-22 05:00:00
cert
cert
unace buffer overflow vulnerability
2005-09-21 00:00:00

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

74.5%

JSON
Related for 1D3A2737-7EB7-11D9-ACF7-000854D03344
nessus3openvas6securityvulns1gentoo1ubuntucve2cve2debiancve2cert1