vrazmain.dll,virobot,hauri_livecall 缓冲区溢出代码执行漏洞

admin

0
文章

0
评论

2023-12-15 06:09:40 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

vrazmain.dll,virobot,hauri_livecall 缓冲区溢出代码执行漏洞

CVE编号

CVE-2005-4786

利用情况

暂无

补丁情况

N/A

披露时间

2005-12-31

漏洞描述

Buffer overflow in the archive decompression library (vrAZMain.dll 5.8.22.137), as used in HAURI anti-virus products including (1) ViRobot Expert 4.0, (2) ViRobot Advanced Server, and (3) HAURI LiveCall, allows user-assisted attackers to execute arbitrary code via an ALZ archive containing a file with a long filename.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0150.html
http://secunia.com/advisories/16852
http://secunia.com/secunia_research/2005-47/advisory/
http://securitytracker.com/id?1015018
http://securitytracker.com/id?1015019
http://www.osvdb.org/19878
http://www.securityfocus.com/bid/15045
http://www.vupen.com/english/advisories/2005/1978
https://exchange.xforce.ibmcloud.com/vulnerabilities/22535

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	hauri	hauri_livecall	*	-
	运行在以下环境
	应用	hauri	virobot	advanced_server	-
	运行在以下环境
	应用	hauri	virobot	expert_4.0	-
	运行在以下环境
	应用	hauri	virobot	linux_server_2.0	-
	运行在以下环境
	应用	hauri	vrazmain.dll	5.8.22.137	-