Vulnerabilities > Eset > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-09-07 | CVE-2018-0649 | Untrusted Search Path vulnerability in Eset products Untrusted search path vulnerability in the installers of multiple Canon IT Solutions Inc. | 9.3 |
| 2016-04-12 | CVE-2015-8841 | Out-of-bounds Write vulnerability in Eset Nod32 Heap-based buffer overflow in the Archive support module in ESET NOD32 before update 11861 allows remote attackers to execute arbitrary code via a large number of languages in an EPOC installation file of type SIS_FILE_MULTILANG. | 9.8 |
| 2008-12-12 | CVE-2008-5527 | Improper Input Validation vulnerability in Eset Smart Security 3.0 ESET Smart Security, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing a CVE-2006-5745 exploit. | 9.3 |
| 2008-12-12 | CVE-2008-5534 | Improper Input Validation vulnerability in Eset Nod32 Antivirus 3440/3662 ESET NOD32 Antivirus 3662 and possibly 3440, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing a CVE-2006-5745 exploit. | 9.3 |