Directory Traversal Vulnerability in e-merge WinAce by e-merge Technologies
CVE-2006-0981

Currently unrated

Key Information:

Vendor: E-merge
Status: E-merge Winace
Vendor: CVE Published:; 3 March 2006

What is CVE-2006-0981?

A directory traversal vulnerability exists in e-merge WinAce 2.6 and earlier that permits remote attackers to manipulate files. By exploiting crafted pathnames in zip or tar archives, unauthorized users can create or overwrite arbitrary files on the system. This security flaw underscores the importance of validating and sanitizing input paths to protect against unauthorized file access.

References

http://www.securityfocus.com/bid/16800

vdb-entryx_refsource_BID

http://www.osvdb.org/23464

vdb-entryx_refsource_OSVDB

http://www.hamid.ir/security/winace.txt

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 3, 2006
Vulnerability Reserved
Mar 3, 2006

CVE-2006-0981 Data

JSON

E-merge

What is CVE-2006-0981?

References

Timeline