Heap-based buffer overflow in Trend Micro AntiVirus Library VSAPI before 7.510, as used in multiple Trend Micro products, allows remote attackers to execute arbitrary code via a crafted ARJ file with long header file names that modify pointers within a structure.
References
Link | Resource |
---|---|
http://secunia.com/advisories/14396 | Patch Vendor Advisory |
http://securitytracker.com/id?1013289 | Patch Vendor Advisory |
http://securitytracker.com/id?1013290 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/12643 | Patch |
http://www.trendmicro.com/vinfo/secadvisories/default6.asp?VName=Vulnerability+in+VSAPI+ARJ+parsing+could+allow+Remote+Code+execution | Patch |
http://xforce.iss.net/xforce/alerts/id/189 | Vendor Advisory |
http://secunia.com/advisories/14396 | Patch Vendor Advisory |
http://securitytracker.com/id?1013289 | Patch Vendor Advisory |
http://securitytracker.com/id?1013290 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/12643 | Patch |
http://www.trendmicro.com/vinfo/secadvisories/default6.asp?VName=Vulnerability+in+VSAPI+ARJ+parsing+could+allow+Remote+Code+execution | Patch |
http://xforce.iss.net/xforce/alerts/id/189 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:55
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/14396 - Patch, Vendor Advisory | |
References | () http://securitytracker.com/id?1013289 - Patch, Vendor Advisory | |
References | () http://securitytracker.com/id?1013290 - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/12643 - Patch | |
References | () http://www.trendmicro.com/vinfo/secadvisories/default6.asp?VName=Vulnerability+in+VSAPI+ARJ+parsing+could+allow+Remote+Code+execution - Patch | |
References | () http://xforce.iss.net/xforce/alerts/id/189 - Vendor Advisory |
Information
Published : 2005-05-02 04:00
Updated : 2024-11-20 23:55
NVD link : CVE-2005-0533
Mitre link : CVE-2005-0533
CVE.ORG link : CVE-2005-0533
JSON object : View
Products Affected
trend_micro
- interscan_emanager
- interscan_viruswall
- interscan_webprotect
- portalprotect
- officescan
- interscan_web_security_suite
- serverprotect
- pc-cillin
- scanmail_emanager
- scanmail
- interscan_messaging_security_suite
- control_manager
- interscan_webmanager
- client-server-messaging_suite_smb
- client-server_suite_smb
CWE