CVE-2006-0337

3 documents3 sources

Severity

7.5HIGH

EPSS

6.4%

top 8.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F-secure F-secure Anti-virus F-secure F-secure Internet Security F-secure Internet Gatekeeper +1 more

Timeline

PublishedJan 21

Latest updateMay 1

Description

Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages4 packages

▶NVDf-secure/f-secure_anti-virus30 versions+29

▶NVDf-secure/f-secure_internet_security2004, 2005, 2006+2

▶NVDf-secure/internet_gatekeeper9 versions+8

▶NVDf-secure/solutions_based_on_f-secure_personal_express6.20

Patches

Patch: secunia.com ↗Patch: www.f-secure.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-52j6-xhx5-9jxf: Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5↗2022-05-01

▶

CVEList

CVE-2006-0337: Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5↗2006-01-21

▶