Title : Servant Salamander "unacev2.dll" ACE File Handling Buffer Overflow Vulnerability VUPEN ID : VUPEN/ADV-2006-1565 CVE ID : GENERIC-MAP-NOMATCH
Rated as : Moderate Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2006-04-28
Technical Description
A vulnerability was identified in Servant Salamander, which may be exploited by attackers to execute arbitrary code. This flaw is due to a buffer overflow error in the "UNACEV2.DLL" library when extracting an ACE archive containing a file with an overly long filename, which could be exploited by attackers to compromise a vulnerable system by convincing a user to extract a specially crafted ACE archive.
