Strix
26.1K

CVE-2006-0337

UnknownEPSS 5.82%

Last modified

CVE-2006-0337 is a vulnerability of currently unknown severity. Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.. EPSS estimates a 5.82% chance of exploitation in the next 30 days.

Description

Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.

Metrics

EPSS Probability
5.82%

92.2th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
F-SecureF-Secure Anti-Virus2.16
F-SecureF-Secure Anti-Virus4.51
F-SecureF-Secure Anti-Virus4.52
F-SecureF-Secure Anti-Virus4.61
F-SecureF-Secure Anti-Virus4.62
F-SecureF-Secure Anti-Virus4.64
F-SecureF-Secure Anti-Virus5.0
F-SecureF-Secure Anti-Virus5.01
F-SecureF-Secure Anti-Virus5.5
F-SecureF-Secure Anti-Virus5.11
F-SecureF-Secure Anti-Virus5.40
F-SecureF-Secure Anti-Virus5.41
F-SecureF-Secure Anti-Virus5.42
F-SecureF-Secure Anti-Virus5.43
F-SecureF-Secure Anti-Virus5.44
F-SecureF-Secure Anti-Virus5.51
F-SecureF-Secure Anti-Virus5.52
F-SecureF-Secure Anti-Virus5.54
F-SecureF-Secure Anti-Virus5.55
F-SecureF-Secure Anti-Virus5.61
F-SecureF-Secure Anti-Virus6.01
F-SecureF-Secure Anti-Virus6.2
F-SecureF-Secure Anti-Virus6.21
F-SecureF-Secure Anti-Virus6.30
F-SecureF-Secure Anti-Virus6.30_sr1
F-SecureF-Secure Anti-Virus6.31
F-SecureF-Secure Anti-Virus6.40
F-SecureF-Secure Anti-Virus2004
F-SecureF-Secure Anti-Virus2005
F-SecureF-Secure Anti-Virus2006
F-SecureF-Secure Internet Security2004
F-SecureF-Secure Internet Security2005
F-SecureF-Secure Internet Security2006
F-SecureInternet Gatekeeper2.06
F-SecureInternet Gatekeeper2.6
F-SecureInternet Gatekeeper2.14
F-SecureInternet Gatekeeper6.3
F-SecureInternet Gatekeeper6.4
F-SecureInternet Gatekeeper6.31
F-SecureInternet Gatekeeper6.32
F-SecureInternet Gatekeeper6.41
F-SecureInternet Gatekeeper6.42
F-SecureSolutions Based On F-Secure Personal Express6.20

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2006-0337?
Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.
How severe is CVE-2006-0337?
Severity scoring for CVE-2006-0337 is pending analysis. The EPSS model estimates a 5.82% probability of exploitation in the next 30 days.
How do I fix CVE-2006-0337?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2006-0337?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST