Vulnerability Description
Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| F-Secure | F-Secure Anti-Virus | 2.16 |
| F-Secure | F-Secure Internet Security | 2004 |
| F-Secure | Internet Gatekeeper | 2.06 |
| F-Secure | Solutions Based On F-Secure Personal Express | 6.20 |
References
- http://secunia.com/advisories/18529PatchVendor Advisory
- http://securitytracker.com/id?1015507
- http://securitytracker.com/id?1015508
- http://securitytracker.com/id?1015509
- http://securitytracker.com/id?1015510
- http://www.ciac.org/ciac/bulletins/q-103.shtml
- http://www.f-secure.com/security/fsc-2006-1.shtmlPatchVendor Advisory
- http://www.osvdb.org/22632
- http://www.securityfocus.com/bid/16309
- http://www.vupen.com/english/advisories/2006/0257
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24198
- http://secunia.com/advisories/18529PatchVendor Advisory
- http://securitytracker.com/id?1015507
- http://securitytracker.com/id?1015508
- http://securitytracker.com/id?1015509
FAQ
What is CVE-2006-0337?
CVE-2006-0337 is a vulnerability with a CVSS score of 7.5 (HIGH). Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-...
How severe is CVE-2006-0337?
CVE-2006-0337 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0337?
Check the references section above for vendor advisories and patch information. Affected products include: F-Secure F-Secure Anti-Virus, F-Secure F-Secure Internet Security, F-Secure Internet Gatekeeper, F-Secure Solutions Based On F-Secure Personal Express.