Description
Buffer overflow in McAfee Scan Engine 4320 with DAT version before 4436 allows remote attackers to execute arbitrary code via a malformed LHA file with a type 2 header file name field, a variant of CVE-2005-0643.
Affected products
- McAfee / antivirus_engine4.3.20 – 4.3.20
References
- MISChttp://www.kb.cert.org/vuls/id/361180
- MISChttp://www.securityfocus.com/bid/10243
- MISChttp://www.securityfocus.com/bid/12832
- MISChttp://xforce.iss.net/xforce/alerts/id/190
- MISChttp://images.mcafee.com/misc/McAfee_Security_Bulletin_05-march-17.pdf
- VENDOR_ADVISORYhttp://secunia.com/advisories/14628
- MISChttp://securitytracker.com/id?1013463