{"type": "osvdb", "published": "2005-10-10T03:59:07", "href": "https://vulners.com/osvdb/OSVDB:19912", "hashmap": [{"key": "affectedSoftware", "hash": "754ed27105ef56fcde44885f31689548"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "fc7062fbaa22c19b0e2fd227cf78a1ce"}, {"key": "cvss", "hash": "e5d275b3ebd62646b78320753699e02e"}, {"key": "description", "hash": "e91ff38bdfb2f8d6b13f3f4d132b4c50"}, {"key": "href", "hash": "7336a3eb938b93352cb9f0ae7650cd65"}, {"key": "modified", "hash": "a982c5c9bc70d20b877a5b841c76b89f"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "a982c5c9bc70d20b877a5b841c76b89f"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "955b328dc7cd615c13af5464c9183464"}, {"key": "title", "hash": "f8e6602b4b10fff88180d53735ae5e84"}, {"key": "type", "hash": "1327ac71f7914948578f08c54f772b10"}], "bulletinFamily": "software", "cvss": {"vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/", "score": 7.5}, "viewCount": 2, "history": [], "edition": 1, "objectVersion": "1.2", "reporter": "OSVDB", "title": "Kaspersky Anti-Virus Engine CHM File Parsing Overflow", "affectedSoftware": [{"operator": "eq", "version": "5.0.5", "name": "Anti-Virus On-Demand Scanner for Linux"}, {"operator": "eq", "version": "5.0.227", "name": "Anti-Virus Personal"}], "enchantments": {"score": {"value": 7.1, "vector": "NONE", "modified": "2017-04-28T13:20:16"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2005-3664"]}, {"type": "osvdb", "idList": ["OSVDB:19913"]}], "modified": "2017-04-28T13:20:16"}, "vulnersScore": 7.1}, "references": [], "id": "OSVDB:19912", "hash": "2bdcb26628b108348a48e4000f2306f4561d071f59d8a0a882cead00238128f5", "lastseen": "2017-04-28T13:20:16", "cvelist": ["CVE-2005-3664"], "modified": "2005-10-10T03:59:07", "description": "## Vulnerability Description\nA remote overflow exists in Kaspersky Anti-Virus. The Anti-Virus engine fails to perform proper bounds checking resulting in a heap-based buffer overflow. With a specially crafted CHM file, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.\n## Technical Description\nAccording to the advisory, the heap-based buffer overflow does not affect Microsoft Windows platforms. However, if a malformed CHM file has been encountered, the engine will fail to scan any files, thus allowing further arbitrary code to reach the target.\n## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, Kaspersky has released a signature update to address this vulnerability.\n## Short Description\nA remote overflow exists in Kaspersky Anti-Virus. The Anti-Virus engine fails to perform proper bounds checking resulting in a heap-based buffer overflow. With a specially crafted CHM file, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.\n## References:\nVendor URL: http://www.kaspersky.com/\nSecurity Tracker: 1015030\n[Secunia Advisory ID:17130](https://secuniaresearch.flexerasoftware.com/advisories/17130/)\nOther Advisory URL: http://www.idefense.com/application/poi/display?id=318&type=vulnerabilities\nMail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0232.html\nISS X-Force ID: 22564\n[CVE-2005-3664](https://vulners.com/cve/CVE-2005-3664)\nBugtraq ID: 15054\n"}

{"cve": [{"lastseen": "2019-05-29T18:08:15", "bulletinFamily": "NVD", "description": "Heap-based buffer overflow in Kaspersky Anti-Virus Engine, as used in Kaspersky Personal 5.0.227, Anti-Virus On-Demand Scanner for Linux 5.0.5, and F-Secure Anti-Virus for Linux 4.50 allows remote attackers to execute arbitrary code via a crafted CHM file.", "modified": "2017-07-11T01:33:00", "id": "CVE-2005-3664", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-3664", "published": "2005-11-18T06:04:00", "title": "CVE-2005-3664", "type": "cve", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:16", "bulletinFamily": "software", "description": "## Vulnerability Description\nA remote overflow exists in F-Secure Anti-Virus for Linux. The Anti-Virus engine fails to perform proper bounds checking resulting in a heap-based buffer overflow. With a specially crafted CHM file, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.\n## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, F-Secure has released a signature update to address this vulnerability.\n## Short Description\nA remote overflow exists in F-Secure Anti-Virus for Linux. The Anti-Virus engine fails to perform proper bounds checking resulting in a heap-based buffer overflow. With a specially crafted CHM file, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.\n## References:\nVendor URL: http://www.f-secure.com/\n[Secunia Advisory ID:17144](https://secuniaresearch.flexerasoftware.com/advisories/17144/)\nOther Advisory URL: http://www.idefense.com/application/poi/display?id=318&type=vulnerabilities\nMail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0232.html\nISS X-Force ID: 22564\n[CVE-2005-3664](https://vulners.com/cve/CVE-2005-3664)\nBugtraq ID: 15054\n", "modified": "2005-10-10T03:59:06", "published": "2005-10-10T03:59:06", "href": "https://vulners.com/osvdb/OSVDB:19913", "id": "OSVDB:19913", "type": "osvdb", "title": "F-Secure Anti-Virus for Linux CHM File Parsing Overflow", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}