Multiple integer overflows in Grisoft AVG Anti-Virus before 7.1.407 allow remote attackers to execute arbitrary code via crafted (1) CAB or (2) RAR archives that trigger a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
References
Link | Resource |
---|---|
http://www.grisoft.com/doc/36365/lng/us/tpl/tpl01 | Patch Product |
http://secunia.com/advisories/22811 | Patch Vendor Advisory |
http://www.vupen.com/english/advisories/2006/4498 | Not Applicable |
http://marc.info/?l=full-disclosure&m=116343152030074&w=2 | Mailing List |
Configurations
Configuration 1 (hide)
|
Information
Published : 2006-11-15 16:07
Updated : 2016-11-18 09:13
NVD link : CVE-2006-5937
Mitre link : CVE-2006-5937
JSON object : View
CWE
CWE-190
Integer Overflow or Wraparound
Products Affected
grisoft
- avg_antivirus