Vulnerabilities

CVE-2005-2384

by Fred · 27/07/2005

Directory traversal vulnerability in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote attackers to write arbitrary files via an ACE archive containing filenames with (1) .. or (2) absolute pathnames.

Date published : 2005-07-27

http://secunia.com/secunia_research/2005-20/advisory/

http://www.avast.com/eng/av4_revision_history.html

Similar

Tags: Cybersecurity Alert