Vulnerability Details CVE-2007-6563
Heap-based buffer overflow in WinAce 2.65 and earlier, and possibly other versions before 2.69, allows user-assisted remote attackers to execute arbitrary code via a long filename in a compressed UUE archive.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.237
EPSS Ranking 95.8%
CVSS Severity
CVSS v2 Score 10.0
References
- http://jvn.jp/jp/JVN%2344736880/index.html
- http://jvndb.jvn.jp/contents/ja/2007/JVNDB-2007-000822.html
- http://osvdb.org/40267
- http://secunia.com/advisories/28215
- http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20071225
- http://www.securityfocus.com/bid/27017
- http://www.vupen.com/english/advisories/2007/4312
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39268
- http://jvn.jp/jp/JVN%2344736880/index.html
- http://jvndb.jvn.jp/contents/ja/2007/JVNDB-2007-000822.html
- http://osvdb.org/40267
- http://secunia.com/advisories/28215
- http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20071225
- http://www.securityfocus.com/bid/27017
- http://www.vupen.com/english/advisories/2007/4312
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39268