Eset Nod32 Antivirus vulnerabilities

CVE-2008-5534 [CRITICAL] CVE-2008-5534: ESET NOD32 Antivirus 3662 and possibly 3440, when Internet Explorer 6 or 7 is used, allows remote at ESET NOD32 Antivirus 3662 and possibly 3440, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing

CVE-2008-5425 [MEDIUM] CVE-2008-5425: ESet NOD32 2.70.0039.0000 does not properly handle (1) multipart/mixed e-mail messages with many MIM ESet NOD32 2.70.0039.0000 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many "Content-type: message/rfc822;" headers, which allows remote attackers to cause a denial of service (stack consumption or other resource consumption) via a large e-mail message, a related issue to CVE-2006-1173

CVE-2007-3970 [HIGH] CWE-362 CVE-2007-3970: Race condition in ESET NOD32 Antivirus before 2.2289 allows remote attackers to execute arbitrary co Race condition in ESET NOD32 Antivirus before 2.2289 allows remote attackers to execute arbitrary code via a crafted CAB file, which triggers heap corruption.