Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3318

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2005-3318
Last Modified 07 Mar 2011 09:26:16
Published 27 Oct 2005 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-3318

Summary

Buffer overflow in the _chm_decompress_block function in CHM lib (chmlib) before 0.37, as used in products such as KchmViewer, allows attackers execute arbitrary code, a different vulnerability than CVE-2005-2930.

Vulnerable Systems

Application

  • Jed Wing Chm Lib 0.1

  • Jed Wing Chm Lib 0.2

  • Jed Wing Chm Lib 0.3

  • Jed Wing Chm Lib 0.31

  • Jed Wing Chm Lib 0.32

  • Jed Wing Chm Lib 0.33

  • Jed Wing Chm Lib 0.35

  • Jed Wing Chm Lib 0.36


References

MISC - http://www.sven-tantau.de/public_files/chmlib/chmlib_20051126.txt

BID - 15211

CONFIRM - http://morte.jedrea.com/~jedwin/projects/chmlib/

XF - chmlib-chmdecompressblock-bo(22885)

VUPEN - ADV-2005-2207

OSVDB - 20335

SUSE - SUSE-SR:2005:025

GENTOO - GLSA-200511-23

SECUNIA - 17776

SECUNIA - 17775

SECUNIA - 17480

SECUNIA - 17325

FULLDISC - 20051026 chmlib exploitable buffer overflow


Last Updated: 27 May 2016 10:40:53