CVE-2006-0981

Name of the Vulnerable Software and Affected Versions e-merge WinAce versions 2.6 and earlier

Description A directory traversal issue allows remote attackers to create and overwrite arbitrary files by using certain crafted pathnames in a zip or tar archive.

Recommendations For versions 2.6 and earlier, consider restricting access to zip and tar archives until a fix is available. As a temporary workaround, avoid using the vulnerable software to extract or create archives that may contain malicious pathnames. At the moment, there is no information about a newer version that contains a fix for this vulnerability.