Executive Summary

Informations
Name CVE-2006-0337 First vendor Publication 2006-01-20
Vendor Cve Last vendor Modification 2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score 7.5 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0337

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 50
Application 3
Application 9
Application 1

Open Source Vulnerability Database (OSVDB)

Id Description
22632 F-Secure Anti-Virus ZIP Archive Processing Overflow

A remote overflow exists in F-Secure Anti-Virus products. F-Secure fails to validate certain boundaries of ZIP files, resulting in a buffer overflow. With a specially crafted zip file, an attacker can cause arbitrary code execution, resulting in a loss of integrity.

Nessus® Vulnerability Scanner

Date Description
2006-01-24 Name : An antivirus application installed on the remote host is affected by multiple...
File : fsecure_archive_overflows.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

http://secunia.com/advisories/18529
http://securitytracker.com/id?1015507
http://securitytracker.com/id?1015508
http://securitytracker.com/id?1015509
http://securitytracker.com/id?1015510
http://www.ciac.org/ciac/bulletins/q-103.shtml
http://www.f-secure.com/security/fsc-2006-1.shtml
http://www.osvdb.org/22632
http://www.securityfocus.com/bid/16309
http://www.vupen.com/english/advisories/2006/0257
https://exchange.xforce.ibmcloud.com/vulnerabilities/24198
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
Date Informations
2024-11-28 23:21:07
  • Multiple Updates
2024-11-28 12:08:14
  • Multiple Updates
2021-05-04 12:03:38
  • Multiple Updates
2021-04-22 01:04:08
  • Multiple Updates
2020-05-23 00:17:21
  • Multiple Updates
2017-11-09 12:01:59
  • Multiple Updates
2017-07-20 09:23:19
  • Multiple Updates
2016-06-28 15:35:13
  • Multiple Updates
2016-04-26 14:14:20
  • Multiple Updates
2014-02-17 10:34:27
  • Multiple Updates
2013-05-11 10:47:57
  • Multiple Updates