1. CVE-Search
  2. CVE-2005-3030
ID CVE-2005-3030
Summary Directory traversal vulnerability in the archive decompression library in AhnLab V3Pro 2004 build 6.0.0.383, V3 VirusBlock 2005 build 6.0.0.383, and V3Net for Windows Server 6.0 build 6.0.0.383 allows remote attackers to write arbitrary files via a .. (dot dot) in the filename in a compressed archive.
References
Vulnerable Configurations
  • cpe:2.3:a:ahnlab:v3_virusblock_2005:6.0.0.383:*:*:*:*:*:*:*
    cpe:2.3:a:ahnlab:v3_virusblock_2005:6.0.0.383:*:*:*:*:*:*:*
  • cpe:2.3:a:ahnlab:v3net:6.0.0.383:*:win_server:*:*:*:*:*
    cpe:2.3:a:ahnlab:v3net:6.0.0.383:*:win_server:*:*:*:*:*
  • cpe:2.3:a:ahnlab:v3pro_2004:6.0.0.383:*:*:*:*:*:*:*
    cpe:2.3:a:ahnlab:v3pro_2004:6.0.0.383:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 18-10-2016 - 03:32)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:P/A:N
refmap via4
bid 14848
bugtraq 20050915 Secunia Research: Ahnlab V3 Antivirus Multiple Vulnerabilities
confirm http://info.ahnlab.com/english/advisory/01.html
misc http://secunia.com/secunia_research/2005-17/advisory/
secunia 15674
Last major update 18-10-2016 - 03:32
Published 21-09-2005 - 22:03
Last modified 18-10-2016 - 03:32
Back to Top