BitDefender Antivirus Filename Handling Format String Vulnerability

2005.10.04

Credit: fRoGGz

Risk: High

Local: Yes

Remote: Yes

CVE: CVE-2005-3154

CWE: N/A

CVSS Base Score: 7.5/10

Impact Subscore: 6.4/10

Exploitability Subscore: 10/10

Exploit range: Remote

Attack complexity: Low

Authentication: No required

Confidentiality impact: Partial

Integrity impact: Partial

Availability impact: Partial

ISSUE:
The vulnerability is caused due to a format string error when generating the scan report file. This can potentially be exploited to execute arbitrary code when a file or directory containing format string specifiers in its name (e.g. %.8X%.8X) is scanned.
 
SOLUTION:
BitDefender was notified on September 16, 2005 by the SecuBox team on the existence of a format string vulnerability in BitDefender products.

Fixes for BitDefender v7.x, BitDefender v8.x and BitDefender 9 Internet Security were released September 26, 2005.
Fixes for BitDefender 9 Professional Plus and BitDefender 9 Standard were released October 4, 2005.

Installed BitDefender solutions were updated automatically through the regular update function.

Source : http://kb.bitdefender.com/KB261-en--Filename-Format-String-Vulnerability.html

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

BitDefender Antivirus Filename Handling Format String Vulnerability

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.