Kozan

**Name of the Vulnerable Software and Affected Versions** WinAce versions 2.6.0.5 and earlier **Description** A buffer overflow issue allows remote attackers to execute arbitrary code via a temporary (.tmp) file that contains an entry with a long file name. **Recommendations** For versions 2.6.0.5 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Ares FileShare version 1.1 **Description** The issue is a stack-based buffer overflow that allows remote attackers or local users to execute arbitrary code. This can be achieved via a long history parameter in the configuration file (ares.conf) or a long search string. **Recommendations** For Ares FileShare version 1.1, update to a newer version that contains a fix for this issue to prevent arbitrary code execution.

**Name of the Vulnerable Software and Affected Versions** Einstein version 1.0.1 **Description** The issue allows local users to gain privileges by accessing sensitive information stored in plaintext in the registry, including `username` and `password`. **Recommendations** For Einstein version 1.0.1, update the software to a version that securely stores sensitive information, or as a temporary workaround, consider restricting access to the registry to minimize the risk of exploitation.