CVE-2006-4626

Heap-based buffer overflow in alwil avast! Anti-virus Engine before 4.7.869 allows remote attackers to execute arbitrary code via a crafted LHA file that contains extended headers with file and directory names whose concatenation triggers the overflow.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/21794
http://www.hustlelabs.com/advisories/04072006_alwil.pdf	Exploit Patch Vendor Advisory
http://www.securityfocus.com/bid/19903
http://www.vupen.com/english/advisories/2006/3515

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:alwil:avast_antivirus:::server:::::*
	cpe:2.3:a:alwil:avast_antivirus::::::::
	cpe:2.3:a:alwil:avast_antivirus:4.0.168:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.0.172:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.0.183:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.0.202:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.0.211:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.0.229:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.0.235:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.260:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.268:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.278:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.287:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.289:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.304:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.319:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.335:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.342:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.357:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.389:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.396:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.412:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.418:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.1.501:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.5.518:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.5.549:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.5.561:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.6.603:::::::*
	cpe:2.3:a:alwil:avast_antivirus:4.6.623:::::::*

History

No history.

Information

Published : 2006-09-07 21:04

Updated : 2011-03-08 02:41

NVD link : CVE-2006-4626

Mitre link : CVE-2006-4626

CVE.ORG link : CVE-2006-4626

JSON object : View

Products Affected

alwil

avast_antivirus

CWE

NVD-CWE-Other

{"id": "CVE-2006-4626", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-09-07T21:04:00.000", "references": [{"url": "http://secunia.com/advisories/21794", "source": "cve@mitre.org"}, {"url": "http://www.hustlelabs.com/advisories/04072006_alwil.pdf", "tags": ["Exploit", "Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/19903", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/3515", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Heap-based buffer overflow in alwil avast! Anti-virus Engine before 4.7.869 allows remote attackers to execute arbitrary code via a crafted LHA file that contains extended headers with file and directory names whose concatenation triggers the overflow."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en mont\u00edculo en alwil avast! Anti-virus Engine anterior a 4.7.869 permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n mediante un archivo LHA artesanal que contiene cabeceras extendidas con nombres de archivos y directorios cuya concatenaci\u00f3n dispara el desbordamiento."}], "lastModified": "2011-03-08T02:41:41.360", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:alwil:avast_antivirus:*:*:server:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5CC8119-CBC9-4122-B9F4-8DD4C8B08776", "versionEndIncluding": "4.6.460"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "247FC548-9B8F-4365-8292-F8AC4441A2D2", "versionEndIncluding": "4.6.763"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.0.168:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "90C40879-2EA4-459C-8B09-7BD7B08CE746"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.0.172:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "026ABB4A-ABB0-4EAB-80AA-D0904AADD499"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.0.183:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10EE0F87-3F43-4539-A6C0-6093137988AE"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.0.202:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3608831-EDD7-4DC9-B22C-20A49C58C3DC"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.0.211:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "010D3CD8-6E19-4A3C-AF3A-891A773E8A80"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.0.229:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2FC9FA41-C6B7-47D0-B087-424C1EB33C7B"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.0.235:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5AB0737-7E86-40E3-B356-F364817F3881"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.260:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D2E6379-791B-4220-827D-833F23252CB5"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.268:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACE89970-5A5C-4F12-9191-7E9609ED0D43"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.278:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "831FC302-4DF5-4C6B-8458-A6DC94B4ABD8"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.287:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "074B74D5-1F16-484A-9E26-6EEB6027B5EC"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.289:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66598B99-1426-4326-AE5C-27ACCE2BADBB"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.304:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ADA7C524-30C1-442A-BC36-58CC88400A93"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.319:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE4E7BB2-9513-4367-821D-51F79B3CCBBA"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.335:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69DEC005-1F28-4227-9A7B-1244560769F0"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.342:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0E4EB75-746A-4C9C-83F2-46CF3BC6C70B"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.357:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "96927EC7-346F-4BB7-A0B8-FFDB95912A11"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.389:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B6B12B74-07D2-410E-99BB-0E9EBF3B51A7"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.396:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "319673EC-3F80-4AA2-9598-B6BA3CA0EF78"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.412:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D0C74DD-7735-4C18-975B-B47CAFD96FD1"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.418:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC9EEA66-3313-4FB1-9342-304162A92366"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.1.501:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "21FED369-86BA-4C6A-AB16-F3974F84D56C"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.5.518:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95C92A34-E4D8-4BA3-B01E-8743719D00EC"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.5.549:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3253D43C-1325-4A3E-8442-1D432E98EFBA"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.5.561:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FEB250C-87AB-422D-AE85-C473974FA160"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.6.603:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92C26411-1364-49CB-8715-4E5F9D07119F"}, {"criteria": "cpe:2.3:a:alwil:avast_antivirus:4.6.623:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71EC304A-2729-4B91-9B87-2DCB3B975DD1"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org", "evaluatorSolution": "This vulnerability is addressed in the following product releases:\r\nALWIL, avast! antivirus, 4.7.869 (for Desktops)\r\nALWIL, avast! antivirus, Server 4.7.660 (for Servers)"}

7.5 /10