CVE-2005-2986
Summary
| CVE | CVE-2005-2986 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2005-09-20 00:03:00 UTC |
| Updated | 2017-07-11 01:33:00 UTC |
| Description | The v3flt2k.sys driver in AhnLab V3Pro 2004 Build 6.0.0.383, V3 VirusBlock 2005 Build 6.0.0.383, V3Net for Windows Server 6.0 Build 6.0.0.383 does not properly validate the source of the DeviceIoControl commands, which allows remote attackers to gain privileges. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ahnlab | V3net | 6.0.0.383 | All | win_server | All |
| Application | Ahnlab | V3net | 6.0.0.383 | All | win_server | All |
| Application | Ahnlab | V3pro 2004 | 6.0.0.383 | All | All | All |
| Application | Ahnlab | V3pro 2004 | 6.0.0.383 | All | All | All |
| Application | Ahnlab | V3 Virusblock 2005 | 6.0.0.383 | All | All | All |
| Application | Ahnlab | V3 Virusblock 2005 | 6.0.0.383 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 'Secunia Research: Ahnlab V3 Antivirus Multiple Vulnerabilities' - MARC | BUGTRAQ | marc.info | |
| AhnLab | CONFIRM | info.ahnlab.com | Patch, Vendor Advisory |
| AEwebworks aeDating Search_Result.PHP SQL Injection Vulnerability | BID | www.securityfocus.com | |
| Secunia - Advisories - AhnLab V3 Antivirus Multiple Vulnerabilities | SECUNIA | secunia.com | Patch, Vendor Advisory |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.