Lucene search

[email protected]CVE-2005-2903

HistorySep 14, 2005 - 8:03 p.m.

CVE-2005-2903

2005-09-1420:03:00

[email protected]

web.nvd.nist.gov

cve-2005-2903

nod32

buffer overflow

remote code execution

arj archive

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.1 High

AI Score

Confidence

High

0.086 Low

EPSS

Percentile

94.5%

JSON

Heap-based buffer overflow in NOD32 2.5 with nod32.002 1.033 build 1127, with active scanning enabled, allows remote attackers to execute arbitrary code via an ARJ archive containing a file with a long filename.

Affected configurations

NVD

Node

eset_softwarenod32_antivirusMatch2.5

CPENameOperatorVersion
eset_software:nod32_antiviruseset software nod32 antiviruseq2.5

CPE	Name	Operator	Version
eset_software:nod32_antivirus	eset software nod32 antivirus	eq	2.5

References

marc.info/?l=bugtraq&m=112621063025054&w=2

secunia.com/advisories/16604/

secunia.com/secunia_research/2005-40/advisory/

www.securityfocus.com/bid/14773

exchange.xforce.ibmcloud.com/vulnerabilities/22203

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.1 High

AI Score

Confidence

High

0.086 Low

EPSS

Percentile

94.5%

JSON

Related for CVE-2005-2903

cvelist1 checkpoint_advisories1 nvd1 nessus1