CVE-2005-0350: Buffer Overflow
First published: Fri Feb 11 2005(Updated: )
Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| f-secure f-secure anti-virus | <=4.52 | |
| f-secure f-secure anti-virus | <=4.61 | |
| f-secure f-secure anti-virus | <=4.61 | |
| f-secure f-secure anti-virus | <=5.01 | |
| f-secure f-secure anti-virus | <=5.01 | |
| f-secure f-secure anti-virus | <=5.5 | |
| f-secure f-secure anti-virus | <=5.43 | |
| f-secure f-secure anti-virus | <=5.51 | |
| f-secure f-secure anti-virus | <=5.55 | |
| f-secure f-secure anti-virus | <=6.2 | |
| f-secure f-secure anti-virus | <=6.31 | |
| f-secure f-secure anti-virus | =4.60 | |
| f-secure f-secure anti-virus | =5.5 | |
| f-secure f-secure anti-virus | =2004 | |
| f-secure f-secure anti-virus | =2005 | |
| f-secure f-secure internet security | =2004 | |
| f-secure f-secure internet security | =2005 | |
| f-secure f-secure personal express | <=5.10 | |
| F-Secure Internet Gatekeeper for Linux | <=6.41 | |
| F-Secure Internet Gatekeeper for Linux | =2.06 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-0350?
CVE-2005-0350 is classified as a critical vulnerability due to its potential for remote code execution.
How do I fix CVE-2005-0350?
To fix CVE-2005-0350, update your F-Secure Anti-Virus and Internet Security products to the latest versions that are not vulnerable.
What products are affected by CVE-2005-0350?
CVE-2005-0350 affects multiple versions of F-Secure Anti-Virus and Internet Security products on various platforms including Linux and Windows.
What exploitation method is used in CVE-2005-0350?
CVE-2005-0350 can be exploited through a crafted ARJ archive that leads to a heap-based buffer overflow.
Who are the attackers in the case of CVE-2005-0350?
CVE-2005-0350 allows remote attackers to execute arbitrary code, posing a significant security risk to affected systems.
- agent/references
- agent/remedy
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- agent/severity
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/f-secure
- canonical/f-secure f-secure anti-virus
- version/f-secure f-secure anti-virus/4.52
- version/f-secure f-secure anti-virus/4.61
- version/f-secure f-secure anti-virus/5.01
- version/f-secure f-secure anti-virus/5.5
- version/f-secure f-secure anti-virus/5.43
- version/f-secure f-secure anti-virus/5.51
- version/f-secure f-secure anti-virus/5.55
- version/f-secure f-secure anti-virus/6.2
- version/f-secure f-secure anti-virus/6.31
- version/f-secure f-secure anti-virus/4.60
- version/f-secure f-secure anti-virus/2004
- version/f-secure f-secure anti-virus/2005
- canonical/f-secure f-secure internet security
- version/f-secure f-secure internet security/2004
- version/f-secure f-secure internet security/2005
- canonical/f-secure f-secure personal express
- version/f-secure f-secure personal express/5.10
- canonical/f-secure internet gatekeeper for linux
- version/f-secure internet gatekeeper for linux/6.41
- version/f-secure internet gatekeeper for linux/2.06