CVE-2006-0337

Description

Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.

Affected products

• F-Secure / f-secure_anti-virus2.16 – 2.16
• F-Secure / f-secure_anti-virus4.51 – 4.51
• F-Secure / f-secure_anti-virus4.51 – 4.51
• F-Secure / f-secure_anti-virus4.51 – 4.51
• F-Secure / f-secure_anti-virus4.52 – 4.52
• F-Secure / f-secure_anti-virus4.52 – 4.52
• F-Secure / f-secure_anti-virus4.52 – 4.52
• F-Secure / f-secure_anti-virus4.61 – 4.61
• F-Secure / f-secure_anti-virus4.61 – 4.61
• F-Secure / f-secure_anti-virus4.62 – 4.62
• F-Secure / f-secure_anti-virus4.64 – 4.64
• F-Secure / f-secure_anti-virus4.64 – 4.64
• F-Secure / f-secure_anti-virus5.0 – 5.0
• F-Secure / f-secure_anti-virus5.0 – 5.0
• F-Secure / f-secure_anti-virus5.01 – 5.01
• F-Secure / f-secure_anti-virus5.01 – 5.01
• F-Secure / f-secure_anti-virus5.5 – 5.5
• F-Secure / f-secure_anti-virus5.5 – 5.5
• F-Secure / f-secure_anti-virus5.5 – 5.5
• F-Secure / f-secure_anti-virus5.5 – 5.5
• F-Secure / f-secure_anti-virus5.11 – 5.11
• F-Secure / f-secure_anti-virus5.11 – 5.11
• F-Secure / f-secure_anti-virus5.40 – 5.40
• F-Secure / f-secure_anti-virus5.41 – 5.41
• F-Secure / f-secure_anti-virus5.41 – 5.41
• F-Secure / f-secure_anti-virus5.41 – 5.41
• F-Secure / f-secure_anti-virus5.42 – 5.42
• F-Secure / f-secure_anti-virus5.42 – 5.42
• F-Secure / f-secure_anti-virus5.42 – 5.42
• F-Secure / f-secure_anti-virus5.43 – 5.43
• F-Secure / f-secure_anti-virus5.44 – 5.44
• F-Secure / f-secure_anti-virus5.51 – 5.51
• F-Secure / f-secure_anti-virus5.52 – 5.52
• F-Secure / f-secure_anti-virus5.52 – 5.52
• F-Secure / f-secure_anti-virus5.52 – 5.52
• F-Secure / f-secure_anti-virus5.54 – 5.54
• F-Secure / f-secure_anti-virus5.55 – 5.55
• F-Secure / f-secure_anti-virus5.61 – 5.61
• F-Secure / f-secure_anti-virus6.01 – 6.01
• F-Secure / f-secure_anti-virus6.01 – 6.01
• F-Secure / f-secure_anti-virus6.2 – 6.2
• F-Secure / f-secure_anti-virus6.2 – 6.2
• F-Secure / f-secure_anti-virus6.21 – 6.21
• F-Secure / f-secure_anti-virus6.30 – 6.30
• F-Secure / f-secure_anti-virus6.30_sr1 – 6.30_sr1
• F-Secure / f-secure_anti-virus6.31 – 6.31
• F-Secure / f-secure_anti-virus6.40 – 6.40
• F-Secure / f-secure_anti-virus2004 – 2004
• F-Secure / f-secure_anti-virus2005 – 2005
• F-Secure / f-secure_anti-virus2006 – 2006
• F-Secure / f-secure_internet_security2004 – 2004
• F-Secure / f-secure_internet_security2005 – 2005
• F-Secure / f-secure_internet_security2006 – 2006
• F-Secure / internet_gatekeeper2.06 – 2.06
• F-Secure / internet_gatekeeper2.6 – 2.6
• F-Secure / internet_gatekeeper2.14 – 2.14
• F-Secure / internet_gatekeeper6.3 – 6.3
• F-Secure / internet_gatekeeper6.4 – 6.4
• F-Secure / internet_gatekeeper6.31 – 6.31
• F-Secure / internet_gatekeeper6.32 – 6.32
• F-Secure / internet_gatekeeper6.41 – 6.41
• F-Secure / internet_gatekeeper6.42 – 6.42
• F-Secure / solutions_based_on_f-secure_personal_express6.20 – 6.20

References

• MISChttp://www.f-secure.com/security/fsc-2006-1.shtml
• MISChttp://securitytracker.com/id?1015510
• VENDOR_ADVISORYhttp://secunia.com/advisories/18529
• MISChttp://www.osvdb.org/22632
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/24198
• MISChttp://securitytracker.com/id?1015509
• MISChttp://www.securityfocus.com/bid/16309
• MISChttp://www.ciac.org/ciac/bulletins/q-103.shtml
• MISChttp://securitytracker.com/id?1015508
• MISChttp://securitytracker.com/id?1015507
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/0257