Vulnerability Description
Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| F-Secure | F-Secure Anti-Virus | <= 4.52 |
| F-Secure | F-Secure Internet Security | 2004 |
| F-Secure | F-Secure Personal Express | <= 5.10 |
| F-Secure | Internet Gatekeeper | <= 6.41 |
References
- http://www.f-secure.com/security/fsc-2005-1.shtmlPatch
- http://xforce.iss.net/xforce/alerts/id/188PatchVendor Advisory
- http://www.f-secure.com/security/fsc-2005-1.shtmlPatch
- http://xforce.iss.net/xforce/alerts/id/188PatchVendor Advisory
FAQ
What is CVE-2005-0350?
CVE-2005-0350 is a vulnerability with a CVSS score of 7.5 (HIGH). Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive.
How severe is CVE-2005-0350?
CVE-2005-0350 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-0350?
Check the references section above for vendor advisories and patch information. Affected products include: F-Secure F-Secure Anti-Virus, F-Secure F-Secure Internet Security, F-Secure F-Secure Personal Express, F-Secure Internet Gatekeeper.