Vulnerability Details : CVE-2005-0350
Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive.
Vulnerability category: OverflowExecute code
Products affected by CVE-2005-0350
- cpe:2.3:a:f-secure:internet_gatekeeper:*:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:internet_gatekeeper:2.06:*:linux:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_client_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:ms_exchange:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:firewalls:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:mimesweeper:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:workstations:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_gateways:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:windows_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:client_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_workstations:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:*:*:linux_server_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.60:*:samba_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:2004:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:2005:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:citrix_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_internet_security:2004:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_internet_security:2005:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_personal_express:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-0350
3.59%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 91 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-0350
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2005-0350
-
http://www.f-secure.com/security/fsc-2005-1.shtml
Patch
-
http://xforce.iss.net/xforce/alerts/id/188
Patch;Vendor Advisory
Jump to