Buffer Overflow in McAfee Scan Engine Affects Security and Performance
CVE-2005-0644

Currently unrated

Key Information:

Vendor: Mcafee
Status: Antivirus Engine
Vendor: CVE Published:; 2 May 2005

Summary

A buffer overflow vulnerability exists in McAfee Scan Engine 4320 when processing a malformed LHA file due to improper handling of the type 2 header file name field. This flaw allows remote attackers to potentially execute arbitrary code, which could lead to system compromise. Ensuring that your Scan Engine is updated with the latest DAT versions is crucial to prevent exploitation of this vulnerability. For further details, consult security advisories and updates.

References

http://www.kb.cert.org/vuls/id/361180

third-party-advisoryx_refsource_CERT-VN

http://www.securityfocus.com/bid/10243

vdb-entryx_refsource_BID

http://www.securityfocus.com/bid/12832

vdb-entryx_refsource_BID

EPSS Score

15% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 2, 2005
Vulnerability Reserved
Mar 4, 2005