Description
Multiple stack-based buffer overflows in ESET NOD32 Antivirus before 2.70.37.0 allow remote attackers to execute arbitrary code during (1) delete/disinfect or (2) rename operations via a crafted directory name.
Affected products
- eset_software / nod32_antivirus2.70.37.0 – 2.70.37.0
References
- MISChttp://www.inkatel.com/wp-content/uploads/2007/05/Advisory.txt
- MISChttp://osvdb.org/36650
- MISChttp://www.securityfocus.com/archive/1/469300/100/0/threaded
- MISChttp://www.securityfocus.com/bid/24098
- VENDOR_ADVISORYhttp://secunia.com/advisories/25375
- MISChttp://www.securityfocus.com/archive/1/469337/100/0/threaded
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/34454
- MISChttp://www.eset.com/support/news.php
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/1911
- MISChttp://securityreason.com/securityalert/2733
- MISChttp://www.securityfocus.com/archive/1/469468/100/0/threaded