Multiple Interpretation Error in NOD32 Antivirus by ESET
CVE-2005-3212

Currently unrated

Key Information:

Vendor: Eset Software
Status: Nod32 Antivirus
Vendor: CVE Published:; 14 October 2005

🔔 Create Eset Software Vulnerability Alert

What is CVE-2005-3212?

Multiple versions of NOD32 Antivirus by ESET contain a vulnerability that allows remote attackers to exploit a flaw in the way certain RAR files are processed. Specifically, the antivirus software fails to detect malicious executables embedded in specially crafted RAR files featuring malformed central and local headers. While these files can be opened by other software such as WinRAR and PowerZip, NOD32's failure to properly handle them can lead to successful virus detection bypass, posing significant risks to users.

References

http://shadock.net/secubox/AVCraftedArchive.html

x_refsource_MISC

http://marc.info/?l=bugtraq&m=112879611919750&w=2

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 14, 2005
Vulnerability Reserved
Oct 14, 2005

JSON