JVNDB-2005-000759

[Japanese]
JVNDB-2005-000759
McAfee VirusScan Engine buffer overflow vulnerability
Overview
McAfee VirusScan Engine contains a buffer overflow vulnerability.
CVSS Severity (What is CVSS?)
CVSS V2 Severity: Base Metrics 5.4 (Medium) [IPA Score] Access Vector: Network Access Complexity: High Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete
Affected Products

McAfee McAfee Scan Engine v.4320 (any McAfee Antivirus products using the 4320 engine with DAT version less than 4436)

Impact
A buffer overflow may occur when scanning a malformed LHA file.
Solution

Vendor Information
McAfee McAfee : McAfee Security Bulletin
CWE (What is CWE?)

CVE (What is CVE?)
CVE-2005-0644
References
JVN : JVN#1F649902 National Vulnerability Database (NVD) : CVE-2005-0644 US-CERT Vulnerability Note : VU#361180 SecurityFocus : 12832 X-Force Security Alerts and Advisories : 190 SecurityTracker : 1013463
Revision History
[2008/05/21] Web page published

McAfee VirusScan Engine buffer overflow vulnerability