F-Secure ARJ Handling Buffer Overflow Vulnerability

BID:12515

Info

F-Secure ARJ Handling Buffer Overflow Vulnerability

Bugtraq ID: 12515
Class: Boundary Condition Error
CVE:
Remote: Yes
Local: No
Published: Feb 10 2005 12:00AM
Updated: Feb 10 2005 12:00AM
Credit: Discovery is credited to Alex Wheeler of ISS X-Force.
Vulnerable: F-Secure Personal Express 5.10
F-Secure Personal Express 5.0
F-Secure Personal Express 4.7
F-Secure Personal Express 4.6
F-Secure Personal Express 4.5
F-Secure Internet Security 2005
F-Secure Internet Security 2004
F-Secure Internet Gatekeeper for Linux 2.0 6
F-Secure Internet Gatekeeper 6.41
F-Secure Internet Gatekeeper 6.40 0
F-Secure Internet Gatekeeper 6.32
F-Secure Internet Gatekeeper 6.31
F-Secure Internet Gatekeeper 6.3
F-Secure Anti-Virus Linux Server Security 5.0 1
F-Secure Anti-Virus Linux Server Security 5.0
F-secure Anti-Virus Linux Client Security 5.0 1
F-secure Anti-Virus Linux Client Security 5.0
F-Secure Anti-Virus for Workstations 5.43
F-Secure Anti-Virus for Workstations 5.42
F-Secure Anti-Virus for Workstations 5.41
F-Secure Anti-Virus for Workstations 5.40
F-Secure Anti-Virus for Windows Servers 5.50
F-Secure Anti-Virus for Windows Servers 5.42
F-Secure Anti-Virus for Windows Servers 5.41
F-Secure Anti-Virus for Samba Servers 4.60
F-Secure Anti-Virus for MS Exchange 6.31
F-Secure Anti-Virus for MS Exchange 6.30 Service Release 1
F-Secure Anti-Virus for MS Exchange 6.21
F-Secure Anti-Virus for MS Exchange 6.3 0
F-Secure Anti-Virus for MS Exchange 6.2
F-Secure Anti-Virus for MS Exchange 6.0 1
F-Secure Anti-Virus for MIMEsweeper 5.51
F-Secure Anti-Virus for MIMEsweeper 5.50
F-Secure Anti-Virus for MIMEsweeper 5.42
F-Secure Anti-Virus for MIMEsweeper 5.41
F-Secure Anti-Virus for Linux Workstations 4.52
F-Secure Anti-Virus for Linux Workstations 4.51
F-Secure Anti-Virus for Linux Servers 4.61
F-Secure Anti-Virus for Linux Servers 4.52
F-Secure Anti-Virus for Linux Servers 4.51
F-Secure Anti-Virus for Linux Gateways 4.61
F-Secure Anti-Virus for Linux Gateways 4.52
F-Secure Anti-Virus for Linux Gateways 4.51
F-Secure Anti-Virus for Firewalls 6.20
F-Secure Anti-Virus for Citrix Servers 5.5
F-Secure Anti-Virus Client Security 5.55
F-Secure Anti-Virus Client Security 5.54
F-Secure Anti-Virus Client Security 5.52
F-Secure Anti-Virus Client Security 5.50
F-secure Anti-Virus 2005
F-Secure Anti-Virus 2004
Not Vulnerable:

Discussion

F-Secure ARJ Handling Buffer Overflow Vulnerability

A buffer overflow vulnerability exists in the ARJ handling code in the Anti-Virus library included in various F-Secure products. The vulnerability is due to insufficient bounds check of ARJ header fields which will be copied into a finite buffer on the heap. This vulnerability could be exploited by a malicious ARJ archive to execute arbitrary code in the context of the affected applications.

Exploit / POC

F-Secure ARJ Handling Buffer Overflow Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

Solution / Fix

F-Secure ARJ Handling Buffer Overflow Vulnerability

Solution:
F-Secure has presented various solutions in the attached F-Secure Security Bulletin FSC-2005-1. Some client software will be automatically updated. Other software may require that a hotfix or upgrade is installed. Please refer to the security bulletin for specific information about obtaining fixes for affected products.


F-Secure Internet Gatekeeper for Linux 2.0 6

F-Secure Anti-Virus for Linux Workstations 4.51

F-Secure Anti-Virus for Linux Gateways 4.51

F-Secure Anti-Virus for Linux Servers 4.51

F-Secure Anti-Virus for Linux Gateways 4.52

F-Secure Anti-Virus for Linux Servers 4.52

F-Secure Anti-Virus for Linux Workstations 4.52

F-Secure Anti-Virus for Samba Servers 4.60

F-Secure Anti-Virus for Linux Gateways 4.61

F-Secure Anti-Virus for Linux Servers 4.61

F-Secure Anti-Virus Linux Server Security 5.0 1

F-Secure Anti-Virus Linux Server Security 5.0

F-secure Anti-Virus Linux Client Security 5.0

F-secure Anti-Virus Linux Client Security 5.0 1

F-Secure Anti-Virus for Workstations 5.40

F-Secure Anti-Virus for Workstations 5.41

F-Secure Anti-Virus for Windows Servers 5.42

F-Secure Anti-Virus for MIMEsweeper 5.42

F-Secure Anti-Virus for Workstations 5.42

F-Secure Anti-Virus for Workstations 5.43

F-Secure Anti-Virus for Citrix Servers 5.5

F-Secure Anti-Virus for MIMEsweeper 5.50

F-Secure Anti-Virus for Windows Servers 5.50

F-Secure Anti-Virus for MIMEsweeper 5.51

F-Secure Anti-Virus Client Security 5.52

F-Secure Anti-Virus Client Security 5.54

F-Secure Anti-Virus Client Security 5.55

F-Secure Anti-Virus for MS Exchange 6.0 1

F-Secure Anti-Virus for Firewalls 6.20

F-Secure Anti-Virus for MS Exchange 6.31

F-Secure Internet Gatekeeper 6.41

References

F-Secure ARJ Handling Buffer Overflow Vulnerability

References:
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report