CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2008-2266
https://notcve.org/view.php?id=CVE-2008-2266
16 May 2008 — uulib/uunconc.c in UUDeview 0.5.20, as used in nzbget before 0.3.0 and possibly other products, allows local users to overwrite arbitrary files via a symlink attack on a temporary filename generated by the tempnam function. NOTE: this may be a CVE-2004-2265 regression. En la biblioteca uulib/uunconc.c en UUDeview versión 0.5.20, como es usado en nzbget versiones anteriores a 0.3.0 y posiblemente en otros productos, permite a usuarios locales sobrescribir archivos arbitrarios por medio de un ataque de tipo s... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=480972 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-2004-2265
https://notcve.org/view.php?id=CVE-2004-2265
31 Dec 2004 — UUDeview 0.5.20 and earlier handles temporary files insecurely during decoding, with unknown attack vectors and impact. • http://www.securityfocus.com/bid/9857 •
CVSS: 10.0EPSS: 59%CPEs: 11EXPL: 2CVE-2004-0333 – WinZip - MIME Parsing Overflow
https://notcve.org/view.php?id=CVE-2004-0333
18 Mar 2004 — Buffer overflow in the UUDeview package, as used in WinZip 6.2 through WinZip 8.1 SR-1, and possibly other packages, allows remote attackers to execute arbitrary code via a MIME archive with certain long MIME parameters. • https://www.exploit-db.com/exploits/272 •