Integer overflow in unace 1.2b allows remote attackers to cause a denial of service (crash) via a small file header in an ace archive, which triggers a buffer overflow.
Vector
NETWORK
Complexity
MEDIUM
Authentication
NONE
Confidentiality
NONE
Integrity
NONE
Availability
PARTIAL
| Advisory | Patch | Confirmed | Link |
|---|---|---|---|
| DSA-3178 | |||
| [oss-security] 20150223 Re: CVE request: unace | |||
| https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775003 |