Vulnerabilities > CVE-2015-8841 - Out-of-bounds Write vulnerability in Eset Nod32

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

eset

CWE-787

critical

NVD

Published: 2016-04-12

Updated: 2023-04-20

Summary

Heap-based buffer overflow in the Archive support module in ESET NOD32 before update 11861 allows remote attackers to execute arbitrary code via a large number of languages in an EPOC installation file of type SIS_FILE_MULTILANG.

Vulnerable Configurations

Part	Description	Count
Application	Eset Eset Nod32 -	907

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://bugs.chromium.org/p/project-zero/issues/detail?id=466
http://www.virusradar.com/en/update/info/11861
http://packetstormsecurity.com/files/136082/ESET-NOD32-Heap-Overflow.html