CyberSec.Space Logo
Back to CVE Browser

CVE-2007-6563

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0590%
EPSS Percentile2.93th
PublishedDec 28, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Heap-based buffer overflow in WinAce 2.65 and earlier, and possibly other versions before 2.69, allows user-assisted remote attackers to execute arbitrary code via a long filename in a compressed UUE archive.

Affected Platforms (CPE)

πŸ“¦
Winace

Winace

<= 2.65

References & Advisories

πŸ”— http://jvn.jp/jp/JVN%2344736880/index.html
πŸ”— http://jvndb.jvn.jp/contents/ja/2007/JVNDB-2007-000822.html
πŸ”— http://osvdb.org/40267
πŸ”— http://secunia.com/advisories/28215
πŸ”— http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20071225
πŸ”— http://www.securityfocus.com/bid/27017
πŸ”— http://www.vupen.com/english/advisories/2007/4312
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/39268

Related Vulnerabilities

CVE-2007-25357.8

WinAce allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that point...

CVE-2019-139217.5

A vulnerability has been identified in SIMATIC WinAC RTX (F) 2010 (All versions < SP3 Update 1). Affected versions of the software...

CVE-2019-193007.5

A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/Evaluation Kits for ...

CVE-2005-26947.5

Buffer overflow in WinAce 2.6.0.5, and possibly earlier versions, allows remote attackers to execute arbitrary code via a temporar...