IceGUI.DLL in ICEOWS 4.20b invokes a function with incorrect arguments, which allows user-assisted remote malicious users to execute arbitrary code via a long filename in the header of an ACE archive, which triggers a stack-based buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
iceows iceows 4.20b |