CVE-2005-2957

Name of the Vulnerable Software and Affected Versions AVIRA Desktop for Windows version 1.00.00.68 with AVPACK32.DLL version 6.31.0.3

Description The issue is a stack-based buffer overflow that occurs when archive scanning is enabled, allowing remote attackers to execute arbitrary code via a long filename in an ACE archive.

Recommendations For AVIRA Desktop for Windows version 1.00.00.68 with AVPACK32.DLL version 6.31.0.3, consider disabling archive scanning until a patch is available. Restrict access to the AVPACK32.DLL module to minimize the risk of exploitation. Avoid using long filenames in ACE archives to prevent potential buffer overflow attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.