ESET Smart Security and NOD32 Antivirus Buffer Overflow Vulnerability

Bugtraq ID:	39998
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	May 07 2010 12:00AM
Updated:	May 10 2010 08:32PM
Credit:	Oleksiuk Dmitry, eSage Lab
Vulnerable:	Eset Smart Security 4.2 Eset NOD32 Antivirus 4.2
Not Vulnerable:

ESET Smart Security and NOD32 Antivirus Buffer Overflow Vulnerability

ESET Smart Security and NOD32 Antivirus are prone to a remote buffer-overflow vulnerability because they fail to perform adequate boundary checks on user-supplied input.

Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.

ESET Smart Security 4.2 and NOD32 Antivirus 4.2 are vulnerable; other versions may also be affected.

ESET Smart Security and NOD32 Antivirus Buffer Overflow Vulnerability

The following proof of concept is available:

• /data/vulnerabilities/exploits/39998.py

ESET Smart Security and NOD32 Antivirus Buffer Overflow Vulnerability

Solution:
The vendor released archive support module version 1114 (20100507) to address this issue. Please contact the vendor for more information on how to obtain and apply this fix.

ESET Smart Security and NOD32 Antivirus Buffer Overflow Vulnerability

References:

• ESET Homepage (ESET)
  
• Eset NOD32 Homepage (ESET)
  
• ESET Smart Security Homepage (ESET)
  
• eset_lzh.zip (Oleksiuk Dmitry, eSage Lab)