Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3284

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3284
Last Modified 05 Sep 2008 04:53:57
Published 23 Oct 2005 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3284

Summary

Multiple buffer overflows in AhnLab V3 AntiVirus V3Pro 2004 before 6.0.0.488, V3Net for Windows Server 6.0 before 6.0.0.488, and MyV3, with compressed file scanning enabled, allow remote attackers to execute arbitrary code via crafted (1) ALZ, (2) UUE, or (3) XXE archives.

Vulnerable Systems

Application

  • Ahnlab Myv3 1.3.11.15

  • Ahnlab V3net 6.0.0.457

  • Ahnlab V3pro 2004 6.0.0.457


References

SECUNIA - 16851

MISC - http://secunia.com/secunia_research/2005-48/advisory/

CONFIRM - http://global.ahnlab.com/security/security_advisory002.html

BID - 15091

BUGTRAQ - 20051013 Secunia Research: AhnLab V3 Antivirus ALZ/UUE/XXE Archive HandlingBuffer Overflow

OSVDB - 19955

SREASON - 80


Last Updated: 27 May 2016 10:40:52