CERTA-2005-AVI-065
Vulnerability from certfr_avis

Une vulnérabilité présente dans divers produits F-Secure lors du traitement des fichiers compressés au format ARJ permet l'exécution de code arbitraire.

Description

Une vulnérabilité de type débordement de la mémoire tampon a été découverte dans de nombreux produits F-Secure. Cette vulnérabilité permet à un utilisateur mal intentionné de faire exécuter un code arbitraire sur le système vulnérable au moyen d'un fichier compressé au format ARJ malicieusement constitué.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. Documentation).

None
Impacted products
Vendor Product Description
N/A N/A F-Secure Anti-Virus for Linux Servers version 4.61 et versions précédentes ;
Citrix N/A F-Secure Anti-Virus for Citrix Servers version 5.50 et versions précédentes ;
Citrix N/A F-Secure Anti-Virus for Linux Workstations version 4.52 et versions précédentes ;
Citrix N/A F-Secure Anti-Virus for Linux Gateways version 4.61 et versions précédentes ;
Citrix N/A F-Secure Internet Gatekeeper version 6.41 et versions précédentes ;
N/A N/A F-Secure Personal Express version 5.10 et versions précédentes ;
ESET Security F-Secure Anti-Virus Linux Client Security version 5.01 et versions précédentes ;
N/A N/A F-Secure Anti-Virus for Firewalls version 6.20 et versions précédentes ;
Microsoft Windows F-Secure Anti-Virus for Windows Servers version 5.50 et versions précédentes ;
N/A N/A F-Secure Internet Gatekeeper for Linux version 2.06 et versions précédentes.
ESET Server Security F-Secure Anti-Virus Linux Server Security version 5.01 et versions précédentes ;
N/A N/A F-Secure Anti-Virus for MIMEsweeper version 5.51 et versions précédentes ;
ESET Security F-Secure Anti-Virus Client Security version 5.55 et versions précédentes ;
N/A N/A F-Secure Anti-Virus 2004 et 2005 ;
Samba N/A F-Secure Anti-Virus for Samba Servers version 4.60 et versions précédentes ;
N/A N/A F-Secure Anti-Virus for MS Exchange version 6.31 et versions précédentes ;
N/A N/A F-Secure Anti-Virus for Workstation version 5.43 et versions précédentes ;
ESET Internet Security F-Secure Internet Security 2004 et 2005 ;
References

Show details on source website

To clipboard 

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "F-Secure Anti-Virus for Linux Servers version 4.61 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus for Citrix Servers version 5.50 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Citrix",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus for Linux Workstations version 4.52 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Citrix",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus for Linux Gateways version 4.61 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Citrix",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Internet Gatekeeper version 6.41 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Citrix",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Personal Express version 5.10 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus Linux Client Security version 5.01 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "Security",
        "vendor": {
          "name": "ESET",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus for Firewalls version 6.20 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus for Windows Servers version 5.50 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Internet Gatekeeper for Linux version 2.06 et versions pr\u00e9c\u00e9dentes.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus Linux Server Security version 5.01 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "Server Security",
        "vendor": {
          "name": "ESET",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus for MIMEsweeper version 5.51 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus Client Security version 5.55 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "Security",
        "vendor": {
          "name": "ESET",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus 2004 et 2005 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus for Samba Servers version 4.60 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Samba",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus for MS Exchange version 6.31 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Anti-Virus for Workstation version 5.43 et versions pr\u00e9c\u00e9dentes ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "F-Secure Internet Security 2004 et 2005 ;",
      "product": {
        "name": "Internet Security",
        "vendor": {
          "name": "ESET",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 de type d\u00e9bordement de la m\u00e9moire tampon a \u00e9t\u00e9\nd\u00e9couverte dans de nombreux produits F-Secure. Cette vuln\u00e9rabilit\u00e9\npermet \u00e0 un utilisateur mal intentionn\u00e9 de faire ex\u00e9cuter un code\narbitraire sur le syst\u00e8me vuln\u00e9rable au moyen d\u0027un fichier compress\u00e9 au\nformat ARJ malicieusement constitu\u00e9.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. Documentation).\n",
  "cves": [],
  "initial_release_date": "2005-02-11T00:00:00",
  "last_revision_date": "2005-02-14T00:00:00",
  "links": [
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 du paquetage NetBSD    fprot-workstation-bin :",
      "url": "ftp://ftp.netbsd.org/pub/NetBSD/packages/pkgsrc/security/fprot-workstation-bin/README.html"
    },
    {
      "title": "Site Internet de F-Secure :",
      "url": "http://www.f-secure.com"
    }
  ],
  "reference": "CERTA-2005-AVI-065",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-02-11T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 NetBSD.",
      "revision_date": "2005-02-14T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 pr\u00e9sente dans divers produits F-Secure lors du\ntraitement des fichiers compress\u00e9s au format ARJ permet l\u0027ex\u00e9cution de\ncode arbitraire.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans les produits F-Secure",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 F-Secure FSC-2005-1 du 10 f\u00e9vrier 2005",
      "url": "http://www.f-secure.com/security/fsc-2005-1.shtml"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.