Back to search
CVE-2005-2856
Published: Sep 8, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Stack-based buffer overflow in the WinACE UNACEV2.DLL third-party compression utility before 2.6.0.0, as used in multiple products including (1) ALZip 5.51 through 6.11, (2) Servant Salamander 2.0 and 2.5 Beta 1, (3) WinHKI 1.66 and 1.67, (4) ExtractNow 3.x, (5) Total Commander 6.53, (6) Anti-Trojan 5.5.421, (7) PowerArchiver before 9.61, (8) UltimateZip 2.7,1, 3.0.3, and 3.1b, (9) Where Is It (WhereIsIt) 3.73.501, (10) FilZip 3.04, (11) IZArc 3.5 beta3, (12) Eazel 1.0, (13) Rising Antivirus 18.27.21 and earlier, (14) AutoMate 6.1.0.0, (15) BitZipper 4.1 SR-1, (16) ZipTV, and other products, allows user-assisted attackers to execute arbitrary code via a long filename in an ACE archive.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
automate-unacev2-bo(26982)
vdb-entry
x_refsource_XF
1016512
vdb-entry
x_refsource_SECTRACK
http://secunia.com/secunia_research/2006-24/advisory
x_refsource_MISC
ADV-2006-2824
vdb-entry
x_refsource_VUPEN
49
third-party-advisory
x_refsource_SREASON
19884
vdb-entry
x_refsource_BID
eazel-ztvunacev2-bo(26479)
vdb-entry
x_refsource_XF
ADV-2006-1797
vdb-entry
x_refsource_VUPEN
20060517 Secunia Research: Eazel unacev2.dll Buffer Overflow Vulnerability
mailing-list
x_refsource_BUGTRAQ
1014863
vdb-entry
x_refsource_SECTRACK
1016011
vdb-entry
x_refsource_SECTRACK
1016115
vdb-entry
x_refsource_SECTRACK
19939
third-party-advisory
x_refsource_SECUNIA
http://secunia.com/secunia_research/2006-46/advisory/
x_refsource_MISC
1016065
vdb-entry
x_refsource_SECTRACK
ADV-2006-1835
vdb-entry
x_refsource_VUPEN
1016088
vdb-entry
x_refsource_SECTRACK
ADV-2006-3495
vdb-entry
x_refsource_VUPEN
19967
third-party-advisory
x_refsource_SECUNIA
http://secunia.com/secunia_research/2006-27/
x_refsource_MISC
1016177
vdb-entry
x_refsource_SECTRACK
1016114
vdb-entry
x_refsource_SECTRACK
powerarchiver-unacev2-ace-bo(26272)
vdb-entry
x_refsource_XF
http://secunia.com/secunia_research/2006-50/advisory/
x_refsource_MISC
20060501 Secunia Research: WinHKI unacev2.dll Buffer Overflow Vulnerability
mailing-list
x_refsource_BUGTRAQ
19931
third-party-advisory
x_refsource_SECUNIA
http://secunia.com/secunia_research/2006-36/advisory
x_refsource_MISC
http://secunia.com/secunia_research/2006-28/advisory
x_refsource_MISC
filzip-unacev2-bo(26447)
vdb-entry
x_refsource_XF
19975
third-party-advisory
x_refsource_SECUNIA
ADV-2006-1775
vdb-entry
x_refsource_VUPEN
16479
third-party-advisory
x_refsource_SECUNIA
ultimatezip-unacev2-bo(26385)
vdb-entry
x_refsource_XF
servant-salamander-unacev2-bo(26116)
vdb-entry
x_refsource_XF
20060609 Secunia Research: AutoMate unacev2.dll Buffer OverflowVulnerability
mailing-list
x_refsource_BUGTRAQ
ADV-2006-1611
vdb-entry
x_refsource_VUPEN
ADV-2006-1681
vdb-entry
x_refsource_VUPEN
20060511 Secunia Research: UltimateZip unacev2.dll Buffer OverflowVulnerability
mailing-list
x_refsource_BUGTRAQ
ADV-2006-2184
vdb-entry
x_refsource_VUPEN
ADV-2006-1577
vdb-entry
x_refsource_VUPEN
http://secunia.com/secunia_research/2006-33/advisory/
x_refsource_MISC
http://secunia.com/secunia_research/2006-29/advisory/
x_refsource_MISC
20060517 Secunia Research: IZArc unacev2.dll Buffer Overflow Vulnerability
mailing-list
x_refsource_BUGTRAQ
19938
third-party-advisory
x_refsource_SECUNIA
19581
third-party-advisory
x_refsource_SECUNIA
antitrojan-unacev2-bo(26302)
vdb-entry
x_refsource_XF
ADV-2006-1694
vdb-entry
x_refsource_VUPEN
20270
third-party-advisory
x_refsource_SECUNIA
19890
third-party-advisory
x_refsource_SECUNIA
19977
third-party-advisory
x_refsource_SECUNIA
winhki-unacev2-bo(26142)
vdb-entry
x_refsource_XF
http://secunia.com/secunia_research/2006-38/advisory
x_refsource_MISC
19596
third-party-advisory
x_refsource_SECUNIA
http://secunia.com/secunia_research/2005-41/advisory/
x_refsource_MISC
1016066
vdb-entry
x_refsource_SECTRACK
20060717 Secunia Research: BitZipper unacev2.dll Buffer OverflowVulnerability
mailing-list
x_refsource_BUGTRAQ
19458
third-party-advisory
x_refsource_SECUNIA
http://secunia.com/secunia_research/2006-25/advisory
x_refsource_MISC
1016012
vdb-entry
x_refsource_SECTRACK
risingantivirus-unacev2-bo(26736)
vdb-entry
x_refsource_XF
http://secunia.com/secunia_research/2006-32/advisory/
x_refsource_MISC
19454
third-party-advisory
x_refsource_SECUNIA
20060508 Secunia Research: Anti-Trojan unacev2.dll Buffer OverflowVulnerability
mailing-list
x_refsource_BUGTRAQ
http://secunia.com/secunia_research/2006-30/advisory
x_refsource_MISC
whereisit-unacev2-bo(26315)
vdb-entry
x_refsource_XF
20060428 Secunia Research: Servant Salamander unacev2.dll Buffer OverflowVulnerability
mailing-list
x_refsource_BUGTRAQ
25129
vdb-entry
x_refsource_OSVDB
bitzipper-unacev2-bo(27763)
vdb-entry
x_refsource_XF
19834
third-party-advisory
x_refsource_SECUNIA
20060515 Secunia Research: FilZip unacev2.dll Buffer Overflow Vulnerability
mailing-list
x_refsource_BUGTRAQ
tziptv-unacev2-bo(28787)
vdb-entry
x_refsource_XF
20060509 Secunia Research: Where Is It unacev2.dll Buffer OverflowVulnerability
mailing-list
x_refsource_BUGTRAQ
20009
third-party-advisory
x_refsource_SECUNIA
izarc-unacev2-bo(26480)
vdb-entry
x_refsource_XF
ADV-2006-2047
vdb-entry
x_refsource_VUPEN
extractnow-unacev2-ace-bo(26168)
vdb-entry
x_refsource_XF
14759
vdb-entry
x_refsource_BID
ADV-2006-1836
vdb-entry
x_refsource_VUPEN
1016257
vdb-entry
x_refsource_SECTRACK
19612
third-party-advisory
x_refsource_SECUNIA
ADV-2006-1565
vdb-entry
x_refsource_VUPEN
ADV-2006-1725
vdb-entry
x_refsource_VUPEN
1015852
vdb-entry
x_refsource_SECTRACK
20050908 Secunia Research: ALZip ACE Archive Handling Buffer Overflow
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now