Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2903

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-2903
Last Modified 05 Sep 2008 04:52:58
Published 14 Sep 2005 04:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2903

Summary

Heap-based buffer overflow in NOD32 2.5 with nod32.002 1.033 build 1127, with active scanning enabled, allows remote attackers to execute arbitrary code via an ARJ archive containing a file with a long filename.

Vulnerable Systems

Application

  • Eset Software Nod32 Antivirus 2.5


References

MISC - http://secunia.com/secunia_research/2005-40/advisory/

BUGTRAQ - 20050908 Secunia Research: NOD32 Anti-Virus ARJ Archive Handling Buffer Overflow

XF - nod32-arj-archive-bo(22203)

BID - 14773

SECUNIA - 16604


Last Updated: 27 May 2016 10:40:40