CVE-2006-2085 | HackTesting

Multiple buffer overflows in (1) CxAce60.dll and (2) CxAce60u.dll in SpeedProject Squeez 5.10 Build 4460, and SpeedCommander 10.52 Build 4450 and 11.01 Build 4450, allow user-assisted remote attackers to execute arbitrary code via an ACE archive that contains a file with a long filename.

References

http://www.vupen.com/english/advisories/2006/1535

http://www.securityfocus.com/archive/1/432101/100/0/threaded

https://exchange.xforce.ibmcloud.com/vulnerabilities/26115

http://www.speedproject.de/enu/

http://www.osvdb.org/24990

http://secunia.com/advisories/19473

http://secunia.com/secunia_research/2006-23/advisory

http://www.securityfocus.com/bid/17709

http://securityreason.com/securityalert/820

http://securitytracker.com/id?1016003

http://securitytracker.com/id?1016002