Info

Disclosure

Sep 14, 2005

Discovery

Sep 05, 2005

Dates

Exploit

Unknown

Solution

Unknown

Description

A remote overflow exists in AVIRA Desktop for Windows. The 'AVPACK32.DLL' library fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted ACE archive containing a compressed file with an overly long filename, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, AVIRA has released a patch to address this vulnerability.

Products

AVIRA GmbH

AVIRA Desktop for Windows

1.0.0.68

References

Bugtraq ID: 14824
Vendor Specific News/Changelog Entry: http://www.avira.com/en/news/avira_desktop_for_windows_patched_against_vulnerabil ......
Secunia Advisory ID: 16691
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-09/0418.html
CVE ID: 2005-2957 (see also: NVD)
Security Tracker: 1014899
Vendor URL: http://www.avira.com/

Credit

Tan Chew Keong - vulnsecunia.com - Secunia Research

Direct URL: http://osvdb.org/36218