First published: Wed Jul 27 2005(Updated: )
Directory traversal vulnerability in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote attackers to write arbitrary files via an ACE archive containing filenames with (1) .. or (2) absolute pathnames.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Alwil Avast Antivirus | =4.6.665 | |
Alwil Avast Antivirus | =4.6.460 | |
Alwil Avast Antivirus | =4.6.665 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.