Vulnerabilities > CVE-2005-2903 - Unspecified vulnerability in Eset Software Nod32 Antivirus 2.5

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN

Summary

Heap-based buffer overflow in NOD32 2.5 with nod32.002 1.033 build 1127, with active scanning enabled, allows remote attackers to execute arbitrary code via an ARJ archive containing a file with a long filename.

Vulnerable Configurations

Part Description Count
Application
Eset_Software
1

Nessus

NASL familyWindows
NASL idNOD32_ARJ_OVERFLOW.NASL
descriptionThe remote host is running NOD32 Antivirus, from eset. The installed version of NOD32 Antivirus is reportedly prone to a heap-based buffer overflow when processing ARJ archives with long filenames. An attacker may be able to exploit this issue to execute arbitrary code on the remote host.
last seen2020-06-01
modified2020-06-02
plugin id19700
published2005-09-14
reporterThis script is Copyright (C) 2005-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/19700
titleNOD32 Antivirus ARJ Archive Filename Handling Overflow