Title : HAURI Antivirus ALZ Archive Processing Buffer Overflow Vulnerability VUPEN ID : VUPEN/ADV-2005-1978 CVE ID : CVE-2005-4786 CWE ID : CWE-
Rated as : Critical
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2005-10-06
Technical Description
A vulnerability was identified in multiple HAURI Antivirus products, which may be exploited by remote attackers or malware to execute arbitrary code. This flaw is due to a stack overflow error in the ALZ archive decompression library (vrAZMain.dll) when extracting a specially crafted ALZ archive containing a compressed file with an overly long filename, which could be exploited by remote attackers to compromise a vulnerable system.
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback If you have additional information or corrections for this security advisory please submit them via our contact form.
