CVSS: 7.5EPSS: 8%CPEs: 3EXPL: 1CVE-2005-3284
https://notcve.org/view.php?id=CVE-2005-3284
Multiple buffer overflows in AhnLab V3 AntiVirus V3Pro 2004 before 6.0.0.488, V3Net for Windows Server 6.0 before 6.0.0.488, and MyV3, with compressed file scanning enabled, allow remote attackers to execute arbitrary code via crafted (1) ALZ, (2) UUE, or (3) XXE archives. • http://global.ahnlab.com/security/security_advisory002.html http://secunia.com/advisories/16851 http://secunia.com/secunia_research/2005-48/advisory http://securityreason.com/securityalert/80 http://www.osvdb.org/19955 http://www.securityfocus.com/archive/1/413260 http://www.securityfocus.com/bid/15091 •
CVSS: 7.5EPSS: 4%CPEs: 3EXPL: 0CVE-2005-3029
https://notcve.org/view.php?id=CVE-2005-3029
Stack-based buffer overflow in AhnLab V3Pro 2004 build 6.0.0.383, V3 VirusBlock 2005 build 6.0.0.383, and V3Net for Windows Server 6.0 build 6.0.0.383 allows remote attackers to execute arbitrary code via a long filname in an ACE archive. • http://info.ahnlab.com/english/advisory/01.html http://marc.info/?l=bugtraq&m=112680062609377&w=2 http://secunia.com/advisories/15674 http://secunia.com/secunia_research/2005-17/advisory http://www.securityfocus.com/bid/14844 •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2005-3030
https://notcve.org/view.php?id=CVE-2005-3030
Directory traversal vulnerability in the archive decompression library in AhnLab V3Pro 2004 build 6.0.0.383, V3 VirusBlock 2005 build 6.0.0.383, and V3Net for Windows Server 6.0 build 6.0.0.383 allows remote attackers to write arbitrary files via a .. (dot dot) in the filename in a compressed archive. • http://info.ahnlab.com/english/advisory/01.html http://marc.info/?l=bugtraq&m=112680062609377&w=2 http://secunia.com/advisories/15674 http://secunia.com/secunia_research/2005-17/advisory http://www.securityfocus.com/bid/14848 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0CVE-2005-2986
https://notcve.org/view.php?id=CVE-2005-2986
The v3flt2k.sys driver in AhnLab V3Pro 2004 Build 6.0.0.383, V3 VirusBlock 2005 Build 6.0.0.383, V3Net for Windows Server 6.0 Build 6.0.0.383 does not properly validate the source of the DeviceIoControl commands, which allows remote attackers to gain privileges. • http://info.ahnlab.com/english/advisory/01.html http://marc.info/?l=bugtraq&m=112680062609377&w=2 http://secunia.com/advisories/15674 http://www.securityfocus.com/bid/14847 https://exchange.xforce.ibmcloud.com/vulnerabilities/22297 •