Heap-based Buffer Overflow in NOD32 Anti-Virus by ESET
CVE-2005-2903

Currently unrated

Key Information:

Vendor: Eset Software
Status: Nod32 Antivirus
Vendor: CVE Published:; 14 September 2005

🔔 Create Eset Software Vulnerability Alert

What is CVE-2005-2903?

A vulnerability exists in NOD32 Anti-Virus version 2.5 that allows remote attackers to execute arbitrary code on affected systems. This issue arises when the software's active scanning feature processes ARJ archive files containing overly long filenames. Attackers can exploit this flaw to gain unauthorized access and control over the affected systems, thus posing a significant risk to users of NOD32.

References

http://www.securityfocus.com/bid/14773

vdb-entryx_refsource_BID

http://secunia.com/secunia_research/2005-40/advisory/

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/22203

vdb-entryx_refsource_XF

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 14, 2005
Vulnerability Reserved
Sep 14, 2005

JSON