Stack-based Buffer Overflow in ESET NOD32 Antivirus Software
CVE-2007-2852

Currently unrated

Key Information:

Vendor: Eset Software
Status: Nod32 Antivirus
Vendor: CVE Published:; 24 May 2007

🔔 Create Eset Software Vulnerability Alert

What is CVE-2007-2852?

Multiple vulnerabilities involving stack-based buffer overflows have been identified in ESET NOD32 Antivirus software versions before 2.70.37.0. These vulnerabilities can be exploited by remote attackers to execute arbitrary code by crafting specific directory names during delete/disinfect or rename operations. Attackers can manipulate the software to exceed memory boundaries, leading to potential compromise of the system's integrity. Immediate updates and patches from ESET are recommended to mitigate these security risks.

References

http://www.inkatel.com/wp-content/uploads/2007/05/Advisor...

x_refsource_MISC

http://osvdb.org/36650

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/archive/1/469300/100/0/threaded

mailing-listx_refsource_BUGTRAQ

EPSS Score

17% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 24, 2007
Vulnerability Reserved
May 24, 2007

JSON