[] NeoSense
E X P L O I T S
title author type platform port cve id

Winace UnAce 1.x - ACE Archive Directory Traversal

Author: Ulf Harnhammar
type: remote
platform: linux
port: 
date_added: 2005-02-23 
date_updated: 2013-05-06 
verified: 1 
codes: CVE-2005-0161;OSVDB-14060 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/12628/info

A remotely exploitable client-side directory-traversal vulnerability affects Winace unace. The application fails to properly sanitize file and directory names contained within malicious ACE format archives.

An attacker may leverage this issue by distributing malicious ACE archives to unsuspecting users. This issue will allow an attacker to write files to arbitrary locations on the filesystem with the privileges of an unsuspecting user that extracts the malicious ACE archive.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/25150.zip
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.