Description
Stack-based buffer overflow in AVIRA Desktop for Windows 1.00.00.68 with AVPACK32.DLL 6.31.0.3, when archive scanning is enabled, allows remote attackers to execute arbitrary code via a long filename in an ACE archive.
Affected products
- Avira / desktop1.00.00.68 – 1.00.00.68
References
- MISChttp://www.securityfocus.com/bid/14824
- MISChttp://www.avira.com/en/news/avira_desktop_for_windows_patched_against_vulnerability.html
- MISChttp://secunia.com/secunia_research/2005-43/advisory/
- VENDOR_ADVISORYhttp://secunia.com/advisories/16691/
- MAILING_LISThttp://marc.info/?l=bugtraq&m=112671128224841&w=2