CyberSec.Space Logo
CVEブラウザに戻る

CVE-2007-6563

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0590%
EPSS Percentile2.93th
Published2007年12月28日
Last Modified2026年4月23日

Vulnerability Description

Heap-based buffer overflow in WinAce 2.65 and earlier, and possibly other versions before 2.69, allows user-assisted remote attackers to execute arbitrary code via a long filename in a compressed UUE archive.

Affected Platforms (CPE)

📦
Winace

Winace

<= 2.65

References & Advisories

🔗 http://jvn.jp/jp/JVN%2344736880/index.html
🔗 http://jvndb.jvn.jp/contents/ja/2007/JVNDB-2007-000822.html
🔗 http://osvdb.org/40267
🔗 http://secunia.com/advisories/28215
🔗 http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20071225
🔗 http://www.securityfocus.com/bid/27017
🔗 http://www.vupen.com/english/advisories/2007/4312
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/39268

関連する脆弱性情報

CVE-2007-25357.8

WinAce allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that point...

CVE-2019-139217.5

A vulnerability has been identified in SIMATIC WinAC RTX (F) 2010 (All versions < SP3 Update 1). Affected versions of the software...

CVE-2019-193007.5

A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/Evaluation Kits for ...

CVE-2005-26947.5

Buffer overflow in WinAce 2.6.0.5, and possibly earlier versions, allows remote attackers to execute arbitrary code via a temporar...