Details of VAR-200505-0687

ID

VAR-200505-0687

CVE

CVE-2005-0350

TITLE

Vulnerabilities in multiple F-Secure products

Trust: 0.8

sources: JVNDB: JVNDB-2005-000936

DESCRIPTION

Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive. f-secure anti-virus , F-Secure Internet Security , f-secure personal express There are unspecified vulnerabilities in multiple F-Secure products such asNone. F-Secure Anti-Virus is prone to a remote security vulnerability

Trust: 1.98

sources: NVD: CVE-2005-0350 // JVNDB: JVNDB-2005-000936 // BID: 82519 // VULHUB: VHN-11559

AFFECTED PRODUCTS

vendor:	f secure	model:	f-secure anti-virus	scope:	eq	version:	2004	Trust: 1.6
vendor:	f secure	model:	f-secure anti-virus	scope:	eq	version:	2005	Trust: 1.6
vendor:	f secure	model:	f-secure anti-virus	scope:	eq	version:	4.60	Trust: 1.6
vendor:	f secure	model:	f-secure internet security	scope:	eq	version:	2004	Trust: 1.6
vendor:	f secure	model:	f-secure anti-virus	scope:	eq	version:	5.5	Trust: 1.6
vendor:	f secure	model:	internet gatekeeper	scope:	eq	version:	2.06	Trust: 1.6
vendor:	f secure	model:	f-secure internet security	scope:	eq	version:	2005	Trust: 1.6
vendor:	f secure	model:	f-secure anti-virus	scope:	lte	version:	6.31	Trust: 1.0
vendor:	f secure	model:	f-secure personal express	scope:	lte	version:	5.10	Trust: 1.0
vendor:	f secure	model:	f-secure anti-virus	scope:	lte	version:	4.61	Trust: 1.0
vendor:	f secure	model:	f-secure anti-virus	scope:	lte	version:	5.55	Trust: 1.0
vendor:	f secure	model:	f-secure anti-virus	scope:	lte	version:	4.52	Trust: 1.0
vendor:	f secure	model:	f-secure anti-virus	scope:	lte	version:	5.51	Trust: 1.0
vendor:	f secure	model:	internet gatekeeper	scope:	lte	version:	6.41	Trust: 1.0
vendor:	f secure	model:	f-secure anti-virus	scope:	lte	version:	5.5	Trust: 1.0
vendor:	f secure	model:	f-secure anti-virus	scope:	lte	version:	5.01	Trust: 1.0
vendor:	f secure	model:	f-secure anti-virus	scope:	lte	version:	6.2	Trust: 1.0
vendor:	f secure	model:	f-secure anti-virus	scope:	lte	version:	5.43	Trust: 1.0
vendor:	エフセキュア	model:	f-secure internet gatekeeper	scope:	-	version:	-	Trust: 0.8
vendor:	エフセキュア	model:	f-secure anti-virus	scope:	-	version:	-	Trust: 0.8
vendor:	エフセキュア	model:	f-secure internet security	scope:	-	version:	-	Trust: 0.8
vendor:	エフセキュア	model:	f-secure personal express	scope:	-	version:	-	Trust: 0.8
vendor:	f secure	model:	f-secure anti-virus	scope:	eq	version:	5.51	Trust: 0.6
vendor:	f secure	model:	f-secure anti-virus	scope:	eq	version:	5.55	Trust: 0.6

sources: JVNDB: JVNDB-2005-000936 // CNNVD: CNNVD-200505-346 // NVD: CVE-2005-0350

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2005-0350
value:	HIGH
Trust: 1.0
NVD:	CVE-2005-0350
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-200505-346
value:	HIGH
Trust: 0.6
VULHUB:	VHN-11559
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2005-0350
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-11559
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-11559 // JVNDB: JVNDB-2005-000936 // CNNVD: CNNVD-200505-346 // NVD: CVE-2005-0350

PROBLEMTYPE DATA

problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	others (CWE-Other) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2005-000936 // NVD: CVE-2005-0350

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200505-346

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200505-346

EXTERNAL IDS

db:	NVD	id:	CVE-2005-0350	Trust: 3.6
db:	JVNDB	id:	JVNDB-2005-000936	Trust: 0.8
db:	ISS	id:	20050210 F-SECURE ANTIVIRUS LIBRARY HEAP OVERFLOW	Trust: 0.6
db:	CNNVD	id:	CNNVD-200505-346	Trust: 0.6
db:	BID	id:	82519	Trust: 0.3
db:	VULHUB	id:	VHN-11559	Trust: 0.1

sources: VULHUB: VHN-11559 // BID: 82519 // JVNDB: JVNDB-2005-000936 // CNNVD: CNNVD-200505-346 // NVD: CVE-2005-0350

REFERENCES

url:	http://www.f-secure.com/security/fsc-2005-1.shtml	Trust: 2.8
url:	http://xforce.iss.net/xforce/alerts/id/188	Trust: 2.8
url:	https://nvd.nist.gov/vuln/detail/cve-2005-0350	Trust: 0.8

sources: VULHUB: VHN-11559 // BID: 82519 // JVNDB: JVNDB-2005-000936 // CNNVD: CNNVD-200505-346 // NVD: CVE-2005-0350

CREDITS

Unknown

Trust: 0.3

sources: BID: 82519

SOURCES

db:	VULHUB	id:	VHN-11559
db:	BID	id:	82519
db:	JVNDB	id:	JVNDB-2005-000936
db:	CNNVD	id:	CNNVD-200505-346
db:	NVD	id:	CVE-2005-0350

LAST UPDATE DATE

2024-08-14T15:09:48.624000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-11559	date:	2008-09-05T00:00:00
db:	BID	id:	82519	date:	2016-07-05T21:22:00
db:	JVNDB	id:	JVNDB-2005-000936	date:	2024-04-25T06:52:00
db:	CNNVD	id:	CNNVD-200505-346	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2005-0350	date:	2008-09-05T20:46:02.133

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-11559	date:	2005-05-02T00:00:00
db:	BID	id:	82519	date:	2005-05-02T00:00:00
db:	JVNDB	id:	JVNDB-2005-000936	date:	2024-04-25T00:00:00
db:	CNNVD	id:	CNNVD-200505-346	date:	2005-05-02T00:00:00
db:	NVD	id:	CVE-2005-0350	date:	2005-05-02T04:00:00