Vulnerability Description
Buffer overflow in the archive decompression library (vrAZMain.dll 5.8.22.137), as used in HAURI anti-virus products including (1) ViRobot Expert 4.0, (2) ViRobot Advanced Server, and (3) HAURI LiveCall, allows user-assisted attackers to execute arbitrary code via an ALZ archive containing a file with a long filename.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hauri | Hauri Livecall | All versions |
| Hauri | Virobot | advanced_server |
| Hauri | Vrazmain.Dll | 5.8.22.137 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0150.htmlPatch
- http://secunia.com/advisories/16852PatchVendor Advisory
- http://secunia.com/secunia_research/2005-47/advisory/Patch
- http://securitytracker.com/id?1015018Patch
- http://securitytracker.com/id?1015019Patch
- http://www.osvdb.org/19878Patch
- http://www.securityfocus.com/bid/15045Patch
- http://www.vupen.com/english/advisories/2005/1978
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22535
- http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0150.htmlPatch
- http://secunia.com/advisories/16852PatchVendor Advisory
- http://secunia.com/secunia_research/2005-47/advisory/Patch
- http://securitytracker.com/id?1015018Patch
- http://securitytracker.com/id?1015019Patch
- http://www.osvdb.org/19878Patch
FAQ
What is CVE-2005-4786?
CVE-2005-4786 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Buffer overflow in the archive decompression library (vrAZMain.dll 5.8.22.137), as used in HAURI anti-virus products including (1) ViRobot Expert 4.0, (2) ViRobot Advanced Server, and (3) HAURI LiveCa...
How severe is CVE-2005-4786?
CVE-2005-4786 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4786?
Check the references section above for vendor advisories and patch information. Affected products include: Hauri Hauri Livecall, Hauri Virobot, Hauri Vrazmain.Dll.