CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Multiple buffer overflows in unace 1.2b allow attackers to execute arbitrary code via 1 2 overflows in ACE archives, 2 a long command line argument, or 3 certain "Ready for next volume" messages...

5.1CVSS8.2AI score0.02189EPSS

Exploits0References4

Tenable Nessus•added 2019/02/27 12:0 a.m.•1172 views

RARLAB WinRAR < 5.70 Beta 1 Multiple Vulnerabilities

The version of RARLAB WinRAR installed on the remote Windows host is prior to 5.70 Beta 1. It is, therefore, affected by the following vulnerabilities : - An error exists in the file 'unacev2.dll' related to the 'filename' field, that allows a specially crafted ACE archive to overwrite files...

7.8CVSS7.5AI score0.93462EPSS

Exploits16References6

The Hacker News•added 2019/02/21 5:35 a.m.•1 views

Warning: Critical WinRAR Flaw Affects All Versions Released In Last 19 Years

Beware Windows users... a new dangerous remote code execution vulnerability has been discovered in the WinRAR software, affecting hundreds of millions of users worldwide. Cybersecurity researchers at Check Point have disclosed technical details of a critical vulnerability in WinRAR—a popular...

8.6AI score

Exploits0

Positive Technologies•added 2015/03/02 12:0 a.m.•2 views

PT-2015-5576 · Winace +1 · Unace +1

Name of the Vulnerable Software and Affected Versions: unace version 1.2b Description: The issue is caused by an integer overflow in the handling of ace archives, which can lead to a denial of service crash when a small file header is encountered. This is triggered by a buffer overflow...

4.3CVSS7.1AI score0.01103EPSS

Exploits1References19

securityvulns•added 2006/05/17 12:0 a.m.•48 views

[Full-disclosure] Secunia Research: Eazel unacev2.dll Buffer Overflow Vulnerability

====================================================================== Secunia Research 17/05/2006 - Eazel unacev2.dll Buffer Overflow Vulnerability - ====================================================================== Table of Contents Affected...

7.5CVSS0.8AI score0.21562EPSS

Exploits0

Gentoo Linux•added 2005/11/13 12:0 a.m.•19 views

RAR: Format string and buffer overflow vulnerabilities

Background RAR is a powerful archive manager that can decompress RAR, ZIP and other files, and can create new archives in RAR and ZIP file format. Description Tan Chew Keong reported about two vulnerabilities found in RAR: A format string error exists when displaying a diagnostic error message th...

8AI score

Exploits0

securityvulns•added 2005/10/11 12:0 a.m.•29 views

Multiple WinRAR archiver vulnerabilities

UUEncoded files format string bug, ACE archives buffer overflow...

3.2AI score

Exploits0References1Affected Software1

CERT•added 2005/09/21 12:0 a.m.•23 views

unace buffer overflow vulnerability

Overview A buffer overflow in the unace compression library may allow a remote attacker to execute arbitrary code. Description The unace compression library is used to decompress ace archives .ace file extension. A lack of input validation on filenames in an ace archive may allow a buffer overflo...

5.1CVSS7.3AI score0.02189EPSS

Exploits0References6

securityvulns•added 2005/09/14 12:0 a.m.•25 views

Avira antivirus buffer overflow

Buffer overflow on parsing ACE archives...

5.4AI score

Exploits0References1Affected Software1

securityvulns•added 2005/08/24 12:0 a.m.•28 views

Hauri antiviral products buffer overflow

Buffer overflow on parsing ACE archives...

5.1AI score

Exploits0References1Affected Software4

Cvelist•added 2005/02/24 5:0 a.m.•19 views

CVE-2005-0161

Multiple directory traversal vulnerabilities in unace 1.2b allow attackers to overwrite arbitrary files via an ACE archive containing 1 ../ sequences or 2 absolute pathnames...

6.6AI score0.00458EPSS

Exploits0References4

Cvelist•added 2005/02/24 5:0 a.m.•19 views

CVE-2005-0160

Multiple buffer overflows in unace 1.2b allow attackers to execute arbitrary code via 1 2 overflows in ACE archives, 2 a long command line argument, or 3 certain "Ready for next volume" messages...

7.4AI score0.02189EPSS

Exploits0References5

Debian CVE•added 2005/02/24 5:0 a.m.•24 views

CVE-2005-0160

Multiple buffer overflows in unace 1.2b allow attackers to execute arbitrary code via 1 2 overflows in ACE archives, 2 a long command line argument, or 3 certain "Ready for next volume" messages...

5.1CVSS7.6AI score0.02189EPSS

Exploits0

securityvulns•added 2005/02/24 12:0 a.m.•54 views

[Full-Disclosure] unace-1.2b multiple buffer overflows and directory traversal bugs

I have found multiple security vulnerabilities in unace-1.2b. It is the last free version. The later versions are just binaries for the x86 processor, which is unhelpful if you want to use free software or if your computer has a non-x86 processor. There are two buffer overflows when extracting,...

5.1CVSS0.6AI score0.02189EPSS

Exploits0

Exploit DB•added 2005/02/23 12:0 a.m.•37 views

Winace UnAce 1.x - ACE Archive Directory Traversal

source: https://www.securityfocus.com/bid/12628/info A remotely exploitable client-side directory-traversal vulnerability affects Winace unace. The application fails to properly sanitize file and directory names contained within malicious ACE format archives. An attacker may leverage this issue b...

7.4AI score

Exploits0

OSV•added 2005/02/22 5:0 a.m.•1 views

DEBIAN-CVE-2005-0161

Multiple directory traversal vulnerabilities in unace 1.2b allow attackers to overwrite arbitrary files via an ACE archive containing 1 ../ sequences or 2 absolute pathnames...

2.1CVSS6.9AI score0.00458EPSS

Exploits0References1

OSV•added 2005/02/22 5:0 a.m.•4 views

CVE-2005-0161

Multiple directory traversal vulnerabilities in unace 1.2b allow attackers to overwrite arbitrary files via an ACE archive containing 1 ../ sequences or 2 absolute pathnames...

6.7AI score

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by