CVE-2005-0350

Description

Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive.

Affected products

• F-Secure / f-secure_anti-virus4.52
• F-Secure / f-secure_anti-virus4.61
• F-Secure / f-secure_anti-virus4.61
• F-Secure / f-secure_anti-virus5.01
• F-Secure / f-secure_anti-virus5.01
• F-Secure / f-secure_anti-virus5.5
• F-Secure / f-secure_anti-virus5.43
• F-Secure / f-secure_anti-virus5.51
• F-Secure / f-secure_anti-virus5.55
• F-Secure / f-secure_anti-virus6.2
• F-Secure / f-secure_anti-virus6.31
• F-Secure / f-secure_anti-virus4.60 – 4.60
• F-Secure / f-secure_anti-virus5.5 – 5.5
• F-Secure / f-secure_anti-virus2004 – 2004
• F-Secure / f-secure_anti-virus2005 – 2005
• F-Secure / f-secure_internet_security2004 – 2004
• F-Secure / f-secure_internet_security2005 – 2005
• F-Secure / f-secure_personal_express5.10
• F-Secure / internet_gatekeeper6.41
• F-Secure / internet_gatekeeper2.06 – 2.06

References

• MISChttp://xforce.iss.net/xforce/alerts/id/188
• MISChttp://www.f-secure.com/security/fsc-2005-1.shtml