RSS   Vulnerabilities for 'Uudeview'   RSS

2008-05-16
 
CVE-2008-2266

CWE-59
 

 
uulib/uunconc.c in UUDeview 0.5.20, as used in nzbget before 0.3.0 and possibly other products, allows local users to overwrite arbitrary files via a symlink attack on a temporary filename generated by the tempnam function. NOTE: this may be a CVE-2004-2265 regression.

 
2004-12-31
 
CVE-2004-2265

 

 
UUDeview 0.5.20 and earlier handles temporary files insecurely during decoding, with unknown attack vectors and impact.

 
2004-11-23
 
CVE-2004-0333

 

 
Buffer overflow in the UUDeview package, as used in WinZip 6.2 through WinZip 8.1 SR-1, and possibly other packages, allows remote attackers to execute arbitrary code via a MIME archive with certain long MIME parameters.

 


Copyright 2024, cxsecurity.com

 

Back to Top