CVE-2005-0350

3 documents3 sources

Severity

7.5HIGH

EPSS

3.1%

top 13.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F-secure F-secure Anti-virus F-secure F-secure Personal Express F-secure Internet Gatekeeper +1 more

Timeline

PublishedMay 2

Latest updateMay 1

Description

Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages4 packages

▶NVDf-secure/f-secure_anti-virus4.52+12

▶NVDf-secure/f-secure_internet_security2004, 2005+1

▶NVDf-secure/internet_gatekeeper6.41+1

▶NVDf-secure/f-secure_personal_express5.10

Patches

Patch: www.f-secure.com ↗Patch: xforce.iss.net ↗Patch: www.f-secure.com ↗

🔴Vulnerability Details

GHSA

GHSA-4x6j-g8gj-v4fg: Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a craf↗2022-05-01

▶

CVEList

CVE-2005-0350: Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a craf↗2005-02-11

▶