CVE-2006-0337 : Buffer overflow in multiple F-Secure Anti-Virus products and versions for Window

Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.

Published 2006-01-21 00:03:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Products affected by CVE-2006-0337

F-secure » Internet Gatekeeper » Version: 6.32
cpe:2.3:a:f-secure:internet_gatekeeper:6.32:*:*:*:*:*:*:*
Matching versions
F-secure » Internet Gatekeeper » Version: 6.4
cpe:2.3:a:f-secure:internet_gatekeeper:6.4:*:*:*:*:*:*:*
Matching versions
F-secure » Internet Gatekeeper » Version: 6.3
cpe:2.3:a:f-secure:internet_gatekeeper:6.3:*:*:*:*:*:*:*
Matching versions
F-secure » Internet Gatekeeper » Version: 6.31
cpe:2.3:a:f-secure:internet_gatekeeper:6.31:*:*:*:*:*:*:*
Matching versions
F-secure » Internet Gatekeeper » Version: 6.41
cpe:2.3:a:f-secure:internet_gatekeeper:6.41:*:*:*:*:*:*:*
Matching versions
F-secure » Internet Gatekeeper » Version: 2.6 Linux Edition
cpe:2.3:a:f-secure:internet_gatekeeper:2.6:*:linux:*:*:*:*:*
Matching versions
F-secure » Internet Gatekeeper » Version: 2.06 Linux Edition
cpe:2.3:a:f-secure:internet_gatekeeper:2.06:*:linux:*:*:*:*:*
Matching versions
F-secure » Internet Gatekeeper » Version: 6.42
cpe:2.3:a:f-secure:internet_gatekeeper:6.42:*:*:*:*:*:*:*
Matching versions
F-secure » Internet Gatekeeper » Version: 2.14 Linux Edition
cpe:2.3:a:f-secure:internet_gatekeeper:2.14:*:linux:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.51 Linux Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.51 Linux Workstations Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_workstations:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.41 Workstations Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:workstations:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.42 Mimesweeper Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:mimesweeper:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.52 Linux Gateways Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_gateways:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.52 Linux Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.42 Windows Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:windows_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.42 Workstations Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:workstations:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.52 Linux Workstations Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_workstations:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.5 Client Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:client_security:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.52 Client Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:client_security:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 2004
cpe:2.3:a:f-secure:f-secure_anti-virus:2004:*:*:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.51 Linux Gateways Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_gateways:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.41 Mimesweeper Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:mimesweeper:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.41 Windows Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:windows_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 6.21 Ms Exchange Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:6.21:*:ms_exchange:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 6.01 Ms Exchange Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:6.01:*:ms_exchange:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 6.2 Ms Exchange Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:6.2:*:ms_exchange:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 6.30 Ms Exchange Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:6.30:*:ms_exchange:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 6.30 Sr1 Ms Exchange Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:6.30_sr1:*:ms_exchange:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 6.31 Ms Exchange Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:6.31:*:ms_exchange:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 2005
cpe:2.3:a:f-secure:f-secure_anti-virus:2005:*:*:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.61 Linux Gateways Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.61:*:linux_gateways:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.0 Linux Server Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.0:*:linux_server_security:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.5 Mimesweeper Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:mimesweeper:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.5 Windows Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:windows_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.55 Client Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.55:*:client_security:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.61 Linux Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.61:*:linux_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.0 Linux Client Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.0:*:linux_client_security:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.43 Workstations Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.43:*:workstations:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.5 Citrix Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:citrix_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 6.40 Ms Exchange Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:6.40:*:ms_exchange:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 2006
cpe:2.3:a:f-secure:f-secure_anti-virus:2006:*:*:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.01 Linux Server Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.01:*:linux_server_security:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.11 Linux Client Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.11:*:linux_client_security:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.11 Linux Server Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.11:*:linux_server_security:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.52 Citrix Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:citrix_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 6.2 Firewalls Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:6.2:*:firewalls:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 2.16 Linux Gateways Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:2.16:*:linux_gateways:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.01 Linux Client Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.01:*:linux_client_security:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.51 Mimesweeper Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.51:*:mimesweeper:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 6.01 Client Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:6.01:*:client_security:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.64 Linux Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.64:*:linux_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.61 Mimesweeper Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.61:*:mimesweeper:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.62 Samba Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.62:*:samba_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 4.64 Linux Gateways Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:4.64:*:linux_gateways:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.40 Workstations Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.40:*:workstations:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.44 Workstations Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.44:*:workstations:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.52 Windows Servers Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:windows_servers:*:*:*:*:*
Matching versions
F-secure » F-secure Anti-virus » Version: 5.54 Client Security Edition
cpe:2.3:a:f-secure:f-secure_anti-virus:5.54:*:client_security:*:*:*:*:*
Matching versions
F-secure » F-secure Internet Security » Version: 2004
cpe:2.3:a:f-secure:f-secure_internet_security:2004:*:*:*:*:*:*:*
Matching versions
F-secure » F-secure Internet Security » Version: 2005
cpe:2.3:a:f-secure:f-secure_internet_security:2005:*:*:*:*:*:*:*
Matching versions
F-secure » F-secure Internet Security » Version: 2006
cpe:2.3:a:f-secure:f-secure_internet_security:2006:*:*:*:*:*:*:*
Matching versions
F-secure » Solutions Based On F-secure Personal Express » Version: 6.20
cpe:2.3:a:f-secure:solutions_based_on_f-secure_personal_express:6.20:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2006-0337

EPSS FAQ

6.41%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 90 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2006-0337

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2006-0337

Jump to

Vulnerability Details : CVE-2006-0337

Products affected by CVE-2006-0337

Exploit prediction scoring system (EPSS) score for CVE-2006-0337

CVSS scores for CVE-2006-0337

References for CVE-2006-0337