CVE-2005-0161 - Later Gasolines

Description

Multiple directory traversal vulnerabilities in unace 1.2b allow attackers to overwrite arbitrary files via an ACE archive containing (1) ../ sequences or (2) absolute pathnames.

Reference

http://lists.grok.org.uk/pipermail/full-disclosure/2005-February/031908.html http://secunia.com/advisories/14359 http://www.novell.com/linux/security/advisories/2005_16_sr.html http://www.securityfocus.com/bid/12628