|
avast! LHA Archive Processing Buffer Overflow Vulnerability
|
|
Secunia Advisory:
|
SA21794
|
|
|
Release Date:
|
2006-09-08
|
|
Popularity:
|
10,658 views
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | avast! Home/Professional 4.x
avast! Server Edition 4.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
| CVE reference: | CVE-2006-4626
|
|
Description:
Ryan Smith has reported a vulnerability in avast!, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error in the anti-virus engine when processing LHA archives. This can be exploited to cause a heap-based buffer overflow via a specially crafted LHA archive with overly long filename and directory name extended-header fields.
Successful exploitation allows execution of arbitrary code.
The vulnerability is reported in the anti-virus engine prior to versions 4.7.869 for desktops and 4.7.660 for servers.
Solution:
Update to a fixed version.
Provided and/or discovered by:
Ryan Smith
Original Advisory:
http://www.hustlelabs.com/advisories/04072006_alwil.pdf
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
