PT-2005-1586 · Trend Micro · Trend Micro Antivirus Library Vsapi

Publicado

2005-02-24

Atualizado

2008-09-05

CVE-2005-0533

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Trend Micro AntiVirus Library VSAPI versions prior to 7.510

Description The issue is related to a heap-based buffer overflow that can be triggered by remote attackers. This is achieved by sending a crafted ARJ file that contains long header file names, which in turn modify pointers within a structure, allowing the execution of arbitrary code.

Recommendations For versions prior to 7.510, update to version 7.510 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2005-0533

Produtos afetados

Trend Micro Antivirus Library Vsapi

PT-2005-1586 · Trend Micro · Trend Micro Antivirus Library Vsapi

CVE-2005-0533

Identificadores relacionados

Produtos afetados

Referências · 8