CVE-2005-0644 - Buffer overflow in McAfee Scan Engine 4320 with DAT version before 4436 allows remote attackers to e

CVE-2005-0644

Summary

Buffer overflow in McAfee Scan Engine 4320 with DAT version before 4436 allows remote attackers to execute arbitrary code via a malformed LHA file with a type 2 header file name field, a variant of CVE-2005-0643.

References

http://images.mcafee.com/misc/McAfee_Security_Bulletin_05-march-17.pdf
http://secunia.com/advisories/14628
http://securitytracker.com/id?1013463
http://www.kb.cert.org/vuls/id/361180
http://www.securityfocus.com/bid/10243
http://www.securityfocus.com/bid/12832
http://xforce.iss.net/xforce/alerts/id/190

Vulnerable Configurations

cpe:2.3:a:mcafee:antivirus_engine:4.3.20:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:antivirus_engine:4.3.20:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 05-09-2008 - 20:46)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bid	10243 12832
cert-vn	VU#361180
confirm	http://images.mcafee.com/misc/McAfee_Security_Bulletin_05-march-17.pdf
iss	20050317 McAfee AntiVirus Library Stack Overflow
sectrack	1013463
secunia	14628

Last major update

05-09-2008 - 20:46

Published

02-05-2005 - 04:00

Last modified

05-09-2008 - 20:46