Vulnerabilities > CVE-2005-4786 - Remote Buffer Overflow vulnerability in Hauri Livecall, Virobot and Vrazmain.Dll
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Buffer overflow in the archive decompression library (vrAZMain.dll 5.8.22.137), as used in HAURI anti-virus products including (1) ViRobot Expert 4.0, (2) ViRobot Advanced Server, and (3) HAURI LiveCall, allows user-assisted attackers to execute arbitrary code via an ALZ archive containing a file with a long filename.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 5 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0150.html
- http://secunia.com/advisories/16852
- http://secunia.com/secunia_research/2005-47/advisory/
- http://securitytracker.com/id?1015018
- http://securitytracker.com/id?1015019
- http://www.osvdb.org/19878
- http://www.securityfocus.com/bid/15045
- http://www.vupen.com/english/advisories/2005/1978
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22535