Vulnerability Details CVE-2015-2063
Integer overflow in unace 1.2b allows remote attackers to cause a denial of service (crash) via a small file header in an ace archive, which triggers a buffer overflow.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.2%
CVSS Severity
CVSS v2 Score 4.3
References
- http://www.debian.org/security/2015/dsa-3178
- http://www.openwall.com/lists/oss-security/2015/02/24/1
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775003
- http://www.debian.org/security/2015/dsa-3178
- http://www.openwall.com/lists/oss-security/2015/02/24/1
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775003