CVE-2005-2903

Description

Heap-based buffer overflow in NOD32 2.5 with nod32.002 1.033 build 1127, with active scanning enabled, allows remote attackers to execute arbitrary code via an ARJ archive containing a file with a long filename.

Affected products

• eset_software / nod32_antivirus2.5 – 2.5

References

• MISChttp://www.securityfocus.com/bid/14773
• MISChttp://secunia.com/secunia_research/2005-40/advisory/
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/22203
• VENDOR_ADVISORYhttp://secunia.com/advisories/16604/
• MAILING_LISThttp://marc.info/?l=bugtraq&m=112621063025054&w=2